14.10.2020 15:23, Thomas HUMMEL пишет: > > > On 14/10/2020 13:24, Andrei Borzenkov wrote: >> On Wed, Oct 14, 2020 at 11:42 AM Thomas HUMMEL >> <thomas.hummel@xxxxxxxxxx> wrote: >>> >>> Hello, >>> >>> thanks for your answer. It's getting clearer. >>> >>> Still : why would the user crond runs on behalf of needs to be allowed >>> in access.conf to access the systemd-user service ? >>> My understanding is that the user@<uid>.service creation needs this >>> service type (or just the systemd --user creation ?) such a rule in >>> access.conf is not needed for let's say a ssh login first session ? >>> >> >> Does PAM configuration for SSH include pam_systemd on your system? > > Yes, via the password-auth include : > > > sshd: > > > session include password-auth > > password-auth: > > > -session optional pam_systemd.so > And both sshd and crond include pam_access in their configuration? _______________________________________________ systemd-devel mailing list systemd-devel@xxxxxxxxxxxxxxxxxxxxx https://lists.freedesktop.org/mailman/listinfo/systemd-devel
Re: Crond session, pam_access and pam_systemd
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: Crond session, pam_access and pam_systemd
- From: Andrei Borzenkov <arvidjaar@xxxxxxxxx>
- Date: Wed, 14 Oct 2020 21:13:06 +0300
- Cc: Youssef GHORBAL <youssef.ghorbal@xxxxxxxxxx>, "jean-baptiste.denis@xxxxxxxxxx" <jean-baptiste.denis@xxxxxxxxxx>, Systemd <systemd-devel@xxxxxxxxxxxxxxxxxxxxx>, brice.raffestin@xxxxxxxxxx
- In-reply-to: <0e36b530-c276-ab84-0151-9a5964087077@pasteur.fr>
- References: <8fd78c03-e940-49b5-c7c1-35dc3d055abb@pasteur.fr> <CAPWNY8V90aEf5XrRhp7Sf+R3B+1Xmb73fmm0sNHpBm57my9JRA@mail.gmail.com> <312536dd-0c21-d65d-358f-e9ef56894046@pasteur.fr> <CAPWNY8X6faSWgLKnXo_daC3RATJcqM-HNv4XkDd_ncUfevmquQ@mail.gmail.com> <8284c1d0-2427-4a45-1c1d-eb07f60684d8@pasteur.fr> <20201013180557.GA1714189@horizon> <b726272e-fdbc-f3be-e021-61e311a2ed19@pasteur.fr> <CAA91j0Ut6qcbdG6Ai7AwUqV-81UNzZEgsVuAh_Uu+W5yN56KDw@mail.gmail.com> <0e36b530-c276-ab84-0151-9a5964087077@pasteur.fr>
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0
- Follow-Ups:
- Re: Crond session, pam_access and pam_systemd
- From: Thomas HUMMEL
- Re: Crond session, pam_access and pam_systemd
- References:
- Crond session, pam_access and pam_systemd
- From: Thomas HUMMEL
- Re: Crond session, pam_access and pam_systemd
- From: Mantas Mikulėnas
- Re: Crond session, pam_access and pam_systemd
- From: Thomas HUMMEL
- Re: Crond session, pam_access and pam_systemd
- From: Mantas Mikulėnas
- Re: Crond session, pam_access and pam_systemd
- From: Thomas HUMMEL
- Re: Crond session, pam_access and pam_systemd
- From: Simon McVittie
- Re: Crond session, pam_access and pam_systemd
- From: Thomas HUMMEL
- Re: Crond session, pam_access and pam_systemd
- From: Andrei Borzenkov
- Re: Crond session, pam_access and pam_systemd
- From: Thomas HUMMEL
- Crond session, pam_access and pam_systemd
- Prev by Date: Re: Thawing status in a service
- Next by Date: Re: "Eye Of Cylon" animation no longer garbles Ctrl-Alt-F9 emergency shell ?
- Previous by thread: Re: Crond session, pam_access and pam_systemd
- Next by thread: Re: Crond session, pam_access and pam_systemd
- Index(es):
 |