> I'm wondering what the various ways are by which to restrict user
>access on a particular machine of a RedHat Linux (mostly RH9 machines),
>in which user information is tied together by NIS??
> So far, I tried adding the given username ("cmura") to
>/etc/security/access.conf (added the line "-:cmura:ALL"), and then
>adding lines like "auth required pam_access.so" to the /etc/pam.d/sshd
>or /etc/pam.d/login files, but this doesn't SSH login by uname "cmura".
>I'm probably missing something very basic about this process? Do the NIS
>settings somehow interfere? Or, how do I tell if PAM rules are even
>being enforced on the machine?? I don't need particularly detailed
>explanations or anything, but if someone could point me in the right
>direction(s), I'd greatly appreciate it....
>Thanks,
> Cameron
If you are truly mounting /etc files via NIS from a main server, than you
are screwed. The simplist way to lock someone out is to change the password
portion of /etc/shadow with "nopass," which will keep the user from being able
to log in. But, if you have a common shadow file, then it won't work.
MB
--
e-mail: vidiot@xxxxxxxxxx /~\ The ASCII
\ / Ribbon Campaign
[So it's true, scythe matters. Willow 5/12/03] X Against
Visit - URL: http://vidiot.com/ / \ HTML Email
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
