Re: Locking out users by name for direct login. Allow SU - only
From: Eigenvector (m44_master_at_yahoo.com)
Date: 05/20/05
- Next message: BB: "Re: Locking out users by name for direct login. Allow SU - only"
- Previous message: DM: "Locking out users by name for direct login. Allow SU - only"
- In reply to: DM: "Locking out users by name for direct login. Allow SU - only"
- Next in thread: Ted Linnell: "Re: Locking out users by name for direct login. Allow SU - only"
- Reply: Ted Linnell: "Re: Locking out users by name for direct login. Allow SU - only"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Thu, 19 May 2005 16:55:56 -0700
"DM" <don.monk@genmills.com> wrote in message
news:WZ6je.20$Hj1.1093@news.uswest.net...
> Does anyone know a method to lockout non root users from direct access
> (telnet, ssh, remsh, etc.)? I would like to be able for certain non
> root users only allow then to be SU - to. It would be a kind of user
> equivalent to securetty for root.
>
> Any help is greatly appreciated.
>
> Thanks,
Yeah, just lock the account - passwd -l <user>
Locking the account shouldn't stop them from being switch user'ed into. I
guess I haven't tried that directly, but I know it works for root su'ing
into daemon accounts.
> DM
>
- Next message: BB: "Re: Locking out users by name for direct login. Allow SU - only"
- Previous message: DM: "Locking out users by name for direct login. Allow SU - only"
- In reply to: DM: "Locking out users by name for direct login. Allow SU - only"
- Next in thread: Ted Linnell: "Re: Locking out users by name for direct login. Allow SU - only"
- Reply: Ted Linnell: "Re: Locking out users by name for direct login. Allow SU - only"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
