On 7/14/05 3:15 PM, Ignacio Vazquez-Abrams wrote: > On Thu, 2005-07-14 at 17:02 -0500, Les Mikesell wrote: > >>I might re-do it with LDAP someday, but it's probably >>more work to control the users that aren't supposed to log into these >>machines than to separately add the ones that are. > > > Stuff pam_netgroups into system-auth then make a group per machine. > > http://www2.physics.umd.edu/~payerle/Software/PAM/ If you set up netgroups, you can specify login rights easily: * /etc/passwd [...] +@login-group +:::::/dev/null:/sbin/nologin * /etc/nsswitch.conf passwd: compat shadow: compat group: files nis netgroup: files nis -- Paul Heinlein <> heinlein@xxxxxxxxxx <> www.madboa.com
Re: Fix passwd/shadow/group files?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: Fix passwd/shadow/group files?
- From: heinlein at madboa.com (Paul Heinlein)
- Date: Thu Jul 14 23:04:33 2005
- In-reply-to: <1121379310.6290.17.camel@xxxxxxxxxxx>
- References: <9979588.1121377326183.JavaMail.root@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> <1121378539.15110.142.camel@xxxxxxxxxxxxxxxxxxxxxx> <1121379310.6290.17.camel@xxxxxxxxxxx>
- References:
- Re: Fix passwd/shadow/group files?
- From: Bryan J. Smith <b.j.smith@xxxxxxxx>
- Re: Fix passwd/shadow/group files?
- From: Les Mikesell
- Re: Fix passwd/shadow/group files?
- From: Ignacio Vazquez-Abrams
- Re: Fix passwd/shadow/group files?
- Prev by Date: Re: Upgrading from RH AS-3 to ??
- Next by Date: Java
- Previous by thread: Re: Fix passwd/shadow/group files?
- Next by thread: Re: Fix passwd/shadow/group files?
- Index(es):
 |