LOGIN.ACCESS(5) BSD File Formats Manual LOGIN.ACCESS(5)NAME
login.access -- login access control table
DESCRIPTION
The login.access file specifies on which ttys or from which hosts certain users are allowed to login.
At login, the /etc/login.access file is checked for the first entry that matches a specific user/host or user/tty combination. That entry can
either allow or deny login access to that user.
Each entry have three fields separated by colon:
o The first field indicates the permission given if the entry matches. It can be either ``+'' (allow access) or ``-'' (deny access) .
o The second field is a comma separated list of users or groups for which the current entry applies. NIS netgroups can used (if configured)
if preceeded by @. The magic string ALL matches all users. A group will match if the user is a member of that group, or it is the user's
primary group.
o The third field is a list of ttys, or network names. A network name can be either a hostname, a domain (indicated by a starting period),
or a netgroup. As with the user list, ALL matches anything. LOCAL matches a string not containing a period.
If the string EXCEPT is found in either the user or from list, the rest of the list are exceptions to the list before EXCEPT.
BUGS
If there's a user and a group with the same name, there is no way to make the group match if the user also matches.
SEE ALSO login(1)AUTHORS
The login_access() function was written by Wietse Venema. This manual page was written for Heimdal.
HEIMDAL March 21, 2003 HEIMDAL
Check Out this Related Man Page
LOGIN.ACCESS(5) BSD File Formats Manual LOGIN.ACCESS(5)NAME
login.access -- login access control table
DESCRIPTION
The login.access file specifies (user, host) combinations and/or (user, tty) combinations for which a login will be either accepted or
refused.
When someone logs in, the login.access is scanned for the first entry that matches the (user, host) combination, or, in case of non-networked
logins, the first entry that matches the (user, tty) combination. The permissions field of that table entry determines whether the login
will be accepted or refused.
Each line of the login access control table has three fields separated by a ':' character: permission:users:origins
The first field should be a "+" (access granted) or "-" (access denied) character. The second field should be a list of one or more login
names, group names, or ALL (always matches). The third field should be a list of one or more tty names (for non-networked logins), host
names, domain names (begin with "."), host addresses, internet network numbers (end with "."), ALL (always matches) or LOCAL (matches any
string that does not contain a "." character). If you run NIS you can use @netgroupname in host or user patterns.
The EXCEPT operator makes it possible to write very compact rules.
The group file is searched only when a name does not match that of the logged-in user. Only groups are matched in which users are explicitly
listed: the program does not look at a user's primary group id value.
FILES
/etc/login.access login access control table
SEE ALSO login(1), pam_login_access(8)AUTHORS
Guido van Rooij
BSD September 13, 2006 BSD
Hi there thanks for checking in.
I run a helpdesk with about 500 users login onto a network
and then onto a Unix box.
Sometimes people use other people's login's.:-(
All user's use there own PC.( I.P )
Is there a way that when somebody logs onto the unix box with a different I.P that the... (6 Replies)
Hi,
I'm now playing with my RH Linux 7.3 installation on my laptop. I've installed the StarOffice suite from root login.
Now my problem:
I created a user account "vishnu".. but I cannot see the StarOffice in the menu listing of this user. How can I give "vishnu" the access to StarOffice... (4 Replies)
Hi!! Experts,
I have a typical scenario here in which several users have access to a particular login .. say "build".
None of the users know the passwd for this login.
The name of some of the user have been to .rhosts file.
The users can connect only by doing a rlogin to this id and then... (4 Replies)
I created a user, i login as a root. I add him in the group where he can access and login as a root! I checked it in users' list and in group's list, he is there. My problem is this, I cant login using the username/account I just created! What should i do to use and login the user/account i've just... (5 Replies)
Hi All!
I would like to know if there is any specific way by which I can restrict access to apecific users (ip addresses).
OS : Red hat linux
Thanks!
nua7 (6 Replies)
Hi!
this would be my first time to post here in this forums, hope you can help me with my queries.
i would like to create a different user name but have the same access rights. Example: root > rootbaby.
thanks (5 Replies)
Hi,
I need to implement something that will enforce login to a Solaris server as a particular, specifed user. After this login stage, users will be able to "su -" to whichever user they wish, by which time their activity will be captured by some sort of script (yet to be written). What I need... (7 Replies)
Hi all,
i have a question about directory accessing.
Question: therese is a x user which can login system, x user can only access specific directories on the system, even y directory has r-x access right for OTHER, x user will not access the y directory.
this x user must access specific... (4 Replies)
Alright, so a number of users are in a group, and they have certain access rights to a file, which is owned by a single user, standard stuff, right?
However, I need to know which user in that group was the last user to edit a file.
Is there any way to determine this in SunOS 5.9? I've looked... (5 Replies)
Hello All,
I am using AIX 6.1
I created two users (user_1 and user_2) with same primary group goup_1.
in user_1 I am accessing an application command line which is found under user_1home_dir/application/bin
I need to access the same application command line from user_2.
What I did that in... (4 Replies)
Hello friends,
I have scratched my system and after that when I am trying to access the console via root login it's failing with an error message of "permission denied". I am able to access the other login, I am having only problem with root and some other user login. I am using an telnet... (7 Replies)
I have var num of matches and i need to group them all but when i use {1,} quantifiers, i get the matches alright but the groups are looking off.
Example In python:
import re
test = "apple orange banana " #note there is space after every word
result = re.match('(\w+ ){1,}',... (4 Replies)