[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: how to prohibit user 's operation

From: "Ian jonhson" <jonhson ian gmail com>
To: "Pluggable Authentication Modules" <pam-list redhat com>
Subject: Re: how to prohibit user 's operation
Date: Tue, 4 Sep 2007 21:35:03 +0800

> If I understand your question correctly, you are trying to prohibit access
> to the john user via su.  If this is the case, and you want to prevent all
> users from being able to su to john, then you can use a pam_listfile
> restriction in /etc/pam.d/su which controls access to who can be su'd to
> and not who can su to another user.
>

Thanks~

I have take a glimpse at codes in the pam_listfile. It seems that all
the hooks will finally call the pam_sm_authenticate to deny somebody.
Can I embed my codes in some other hooks except pam_sm_authenticate to
deny specific users ?

References:
- how to prohibit user 's operation
  - From: Ian jonhson
- Re: how to prohibit user 's operation
  - From: Barry Brimer

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]