Gecko [ sachasauda.akalacademy.ac.in ]

Name	Size	Permission
Linux-PAM_SAG.html	8.98 KB	-rw-r--r--
sag-author.html	3.04 KB	-rw-r--r--
sag-configuration-directory.ht...	2.89 KB	-rw-r--r--
sag-configuration-example.html	5.39 KB	-rw-r--r--
sag-configuration-file.html	17.11 KB	-rw-r--r--
sag-configuration.html	2.99 KB	-rw-r--r--
sag-copyright.html	3.53 KB	-rw-r--r--
sag-introduction.html	4.34 KB	-rw-r--r--
sag-module-reference.html	37.26 KB	-rw-r--r--
sag-overview.html	7.81 KB	-rw-r--r--
sag-pam_access.html	17.54 KB	-rw-r--r--
sag-pam_cracklib.html	19.79 KB	-rw-r--r--
sag-pam_debug.html	7.9 KB	-rw-r--r--
sag-pam_deny.html	4.59 KB	-rw-r--r--
sag-pam_echo.html	5.62 KB	-rw-r--r--
sag-pam_env.html	11.58 KB	-rw-r--r--
sag-pam_exec.html	8.17 KB	-rw-r--r--
sag-pam_faildelay.html	4.48 KB	-rw-r--r--
sag-pam_filter.html	9.12 KB	-rw-r--r--
sag-pam_ftp.html	6.06 KB	-rw-r--r--
sag-pam_group.html	9.86 KB	-rw-r--r--
sag-pam_issue.html	6.23 KB	-rw-r--r--
sag-pam_keyinit.html	6.85 KB	-rw-r--r--
sag-pam_lastlog.html	7.89 KB	-rw-r--r--
sag-pam_limits.html	17.51 KB	-rw-r--r--
sag-pam_listfile.html	10.29 KB	-rw-r--r--
sag-pam_localuser.html	5.28 KB	-rw-r--r--
sag-pam_loginuid.html	5.08 KB	-rw-r--r--
sag-pam_mail.html	7.58 KB	-rw-r--r--
sag-pam_mkhomedir.html	6.05 KB	-rw-r--r--
sag-pam_motd.html	4.19 KB	-rw-r--r--
sag-pam_namespace.html	19.79 KB	-rw-r--r--
sag-pam_nologin.html	5.21 KB	-rw-r--r--
sag-pam_permit.html	4.2 KB	-rw-r--r--
sag-pam_pwhistory.html	7.63 KB	-rw-r--r--
sag-pam_rhosts.html	6.25 KB	-rw-r--r--
sag-pam_rootok.html	4.99 KB	-rw-r--r--
sag-pam_securetty.html	6.33 KB	-rw-r--r--
sag-pam_selinux.html	8.12 KB	-rw-r--r--
sag-pam_shells.html	4.16 KB	-rw-r--r--
sag-pam_succeed_if.html	8.94 KB	-rw-r--r--
sag-pam_tally.html	13.68 KB	-rw-r--r--
sag-pam_tally2.html	14.6 KB	-rw-r--r--
sag-pam_time.html	9.5 KB	-rw-r--r--
sag-pam_timestamp.html	6.28 KB	-rw-r--r--
sag-pam_umask.html	6.17 KB	-rw-r--r--
sag-pam_unix.html	14.29 KB	-rw-r--r--
sag-pam_userdb.html	8.29 KB	-rw-r--r--
sag-pam_warn.html	4.46 KB	-rw-r--r--
sag-pam_wheel.html	7.01 KB	-rw-r--r--
sag-pam_xauth.html	8.22 KB	-rw-r--r--
sag-security-issues-other.html	2.92 KB	-rw-r--r--
sag-security-issues-wrong.html	2.89 KB	-rw-r--r--
sag-security-issues.html	2.11 KB	-rw-r--r--
sag-see-also.html	2.23 KB	-rw-r--r--
sag-text-conventions.html	3.11 KB	-rw-r--r--

Code Editor : sag-pam_securetty.html

<html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><title>6.28. pam_securetty - limit root login to special devices</title><meta name="generator" content="DocBook XSL Stylesheets V1.78.1"><link rel="home" href="Linux-PAM_SAG.html" title="The Linux-PAM System Administrators' Guide"><link rel="up" href="sag-module-reference.html" title="Chapter 6. A reference guide for available modules"><link rel="prev" href="sag-pam_rootok.html" title="6.27. pam_rootok - gain only root access"><link rel="next" href="sag-pam_selinux.html" title="6.29. pam_selinux - set the default security context"></head><body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF"><div class="navheader"><table width="100%" summary="Navigation header"><tr><th colspan="3" align="center">6.28. pam_securetty - limit root login to special devices</th></tr><tr><td width="20%" align="left"><a accesskey="p" href="sag-pam_rootok.html">Prev</a> </td><th width="60%" align="center">Chapter 6. A reference guide for available modules</th><td width="20%" align="right"> <a accesskey="n" href="sag-pam_selinux.html">Next</a></td></tr></table><hr></div><div class="section"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a name="sag-pam_securetty"></a>6.28. pam_securetty - limit root login to special devices</h2></div></div></div><div class="cmdsynopsis"><p><code class="command">pam_securetty.so</code>  [
        debug
      ]</p></div><div class="section"><div class="titlepage"><div><div><h3 class="title"><a name="sag-pam_securetty-description"></a>6.28.1. DESCRIPTION</h3></div></div></div><p>
      pam_securetty is a PAM module that allows root logins only if the
      user is logging in on a "secure" tty, as defined by the listing
      in <code class="filename">/etc/securetty</code>. pam_securetty also checks
      to make sure that <code class="filename">/etc/securetty</code> is a plain
      file and not world writable. It will also allow root logins on
      the tty specified with <code class="option">console=</code> switch on the
      kernel command line and on ttys from the
      <code class="filename">/sys/class/tty/console/active</code>.
    </p><p>
      This module has no effect on non-root users and requires that the
      application fills in the <span class="emphasis"><em>PAM_TTY</em></span>
      item correctly.
    </p><p>
      For canonical usage, should be listed as a
      <span class="emphasis"><em>required</em></span> authentication method
      before any <span class="emphasis"><em>sufficient</em></span>
      authentication methods.
    </p></div><div class="section"><div class="titlepage"><div><div><h3 class="title"><a name="sag-pam_securetty-options"></a>6.28.2. OPTIONS</h3></div></div></div><div class="variablelist"><dl class="variablelist"><dt><span class="term">
          <code class="option">debug</code>
        </span></dt><dd><p>
            Print debug information.
          </p></dd><dt><span class="term">
          <code class="option">noconsole</code>
        </span></dt><dd><p>
            Do not automatically allow root logins on the kernel console
            device, as specified on the kernel command line or by the sys file,
            if it is not also specified in the
            <code class="filename">/etc/securetty</code> file.
          </p></dd></dl></div></div><div class="section"><div class="titlepage"><div><div><h3 class="title"><a name="sag-pam_securetty-types"></a>6.28.3. MODULE TYPES PROVIDED</h3></div></div></div><p>
      Only the <code class="option">auth</code> module type is provided.
    </p></div><div class="section"><div class="titlepage"><div><div><h3 class="title"><a name="sag-pam_securetty-return_values"></a>6.28.4. RETURN VALUES</h3></div></div></div><div class="variablelist"><dl class="variablelist"><dt><span class="term">PAM_SUCCESS</span></dt><dd><p>
            The user is allowed to continue authentication.
            Either the user is not root, or the root user is
            trying to log in on an acceptable device.
          </p></dd><dt><span class="term">PAM_AUTH_ERR</span></dt><dd><p>
            Authentication is rejected. Either root is attempting to
            log in via an unacceptable device, or the
            <code class="filename">/etc/securetty</code> file is world writable or
            not a normal file.
          </p></dd><dt><span class="term">PAM_INCOMPLETE</span></dt><dd><p>
            An application error occurred. pam_securetty was not able
            to get information it required from the application that
            called it.
          </p></dd><dt><span class="term">PAM_SERVICE_ERR</span></dt><dd><p>
            An error occurred while the module was determining the
            user's name or tty, or the module could not open
            <code class="filename">/etc/securetty</code>.
          </p></dd><dt><span class="term">PAM_USER_UNKNOWN</span></dt><dd><p>
            The module could not find the user name in the
            <code class="filename">/etc/passwd</code> file to verify whether
            the user had a UID of 0. Therefore, the results of running
            this module are ignored.
          </p></dd></dl></div></div><div class="section"><div class="titlepage"><div><div><h3 class="title"><a name="sag-pam_securetty-examples"></a>6.28.5. EXAMPLES</h3></div></div></div><p>
      </p><pre class="programlisting">
auth  required  pam_securetty.so
auth  required  pam_unix.so
      </pre><p>
    </p></div><div class="section"><div class="titlepage"><div><div><h3 class="title"><a name="sag-pam_securetty-author"></a>6.28.6. AUTHOR</h3></div></div></div><p>
        pam_securetty was written by Elliot Lee &lt;sopwith@cuc.edu&gt;.
      </p></div></div><div class="navfooter"><hr><table width="100%" summary="Navigation footer"><tr><td width="40%" align="left"><a accesskey="p" href="sag-pam_rootok.html">Prev</a> </td><td width="20%" align="center"><a accesskey="u" href="sag-module-reference.html">Up</a></td><td width="40%" align="right"> <a accesskey="n" href="sag-pam_selinux.html">Next</a></td></tr><tr><td width="40%" align="left" valign="top">6.27. pam_rootok - gain only root access </td><td width="20%" align="center"><a accesskey="h" href="Linux-PAM_SAG.html">Home</a></td><td width="40%" align="right" valign="top"> 6.29. pam_selinux - set the default security context</td></tr></table></div></body></html>

${this.title}

Code Editor : sag-pam_securetty.html