On Tue, Mar 01, 2005 at 11:11:18AM -0500, Matthew Miller wrote: > *Should* this file be included in system-auth (or at least login's and > sshd's pam conf), or is it just "yet another access control mechanism and > we've already got a dozen of those and that would just further confuse > people"? > > I think that if not, the comment in the file should be changed to mention > that it's not used in the default Fedora/RH config. > > Anyone have any opinion on this? The pam_access mechanism requires that the invoking application define a PAM_TTY item to be useful. That rules its inclusion right out for many PAM configurations. Nalin
