diff options
| author |   Seraphim Mellos <mellos@ceid.upatras.gr> | 2008-08-16 17:29:10 +0300 |
|---|---|---|
| committer | Seraphim Mellos <mellos@ceid.upatras.gr> | 2008-08-16 17:29:10 +0300 |
| commit | 61fd29bb73c41b655ba649256a5145a734c33ca9 (patch) | |
| tree | 0a54725866efcf237116a39450e0491237ce33a3 /modules/pam_securetty | |
| parent | Fixed a problem in salt generator (diff) | |
| download | openpam-modules-61fd29bb73c41b655ba649256a5145a734c33ca9.tar.gz openpam-modules-61fd29bb73c41b655ba649256a5145a734c33ca9.tar.bz2 openpam-modules-61fd29bb73c41b655ba649256a5145a734c33ca9.zip | |
Added man pages and updated License info and README file
Diffstat (limited to 'modules/pam_securetty')
| -rw-r--r-- | modules/pam_securetty/pam_securetty.8 | 37 | ||||
| -rw-r--r-- | modules/pam_securetty/pam_securetty.c | 25 |
2 files changed, 62 insertions, 0 deletions
diff --git a/modules/pam_securetty/pam_securetty.8 b/modules/pam_securetty/pam_securetty.8 new file mode 100644 index 0000000..2c329e1 --- /dev/null +++ b/modules/pam_securetty/pam_securetty.8 @@ -0,0 +1,37 @@ +.\" OpenPAM's pam_securetty man page +.\" Contact me ( mellos@ceid.upatras.gr ) for any corrections or omissions. + +.TH PAM_SECURETTY 8 "September 2008" "OpenPAM modules" "OpenPAM modules" +.SH NAME +pam_securetty - PAM module which can limit root logins only from specific devices +.SH SYNOPSIS +.B pam_securetty.so [\.\.\.] +.SH DESCRIPTION +pam_securetty is a PAM module which limits root logins only from specific devices, +which are listed in +.I /etc/securetty. +.PP +The module checks the afformentioned file to ensure that it's a regular file and +also that it's not world writable. If either of the above is true, the module returns +PAM_AUTH_ERR, which means that the +.I /etc/securetty +file cannot be trusted (or either that the current TTY is not listed in the securetty +file). +.SH OPTIONS +No options are supported for this module. +.SH FILES +To allow root logins only from the devices listed in +.I /etc/securetty +add the following line to the appropriate configuration files +.nf +.IP +auth required pam_securetty.so +auth required pam_unix.so +.SH AUTHOR +Seraphim Mellos <mellos at ceid dot upatras dot gr> +.SH "SEE ALSO" +.BR securetty(5), +.BR pam (8), +.BR pam.conf (8), +.BR pam.d (8) + diff --git a/modules/pam_securetty/pam_securetty.c b/modules/pam_securetty/pam_securetty.c index 424e8dd..1383a3a 100644 --- a/modules/pam_securetty/pam_securetty.c +++ b/modules/pam_securetty/pam_securetty.c @@ -1,3 +1,28 @@ +/* + * Copyright (c) 2008 Seraphim Mellos <mellos@ceid.upatras.gr> + * + * Permission is hereby granted, free of charge, to any person + * obtaining a copy of this software and associated documentation + * files (the "Software"), to deal in the Software without + * restriction, including without limitation the rights to use, + * copy, modify, merge, publish, distribute, sublicense, and/or sell + * copies of the Software, and to permit persons to whom the + * Software is furnished to do so, subject to the following + * conditions: + * + * The above copyright notice and this permission notice shall be + * included in all copies or substantial portions of the Software. + * + * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, + * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES + * OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND + * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT + * HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, + * WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING + * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR + * OTHER DEALINGS IN THE SOFTWARE. + */ + #include <sys/types.h> #include <sys/stat.h> #include <stdio.h> |