LOGIN.ACCESS(5) BSD File Formats Manual LOGIN.ACCESS(5)NAME
login.access -- login access control table
DESCRIPTION
The login.access file specifies (user, host) combinations and/or (user, tty) combinations for which a login will be either accepted or
refused.
When someone logs in, the login.access is scanned for the first entry that matches the (user, host) combination, or, in case of non-networked
logins, the first entry that matches the (user, tty) combination. The permissions field of that table entry determines whether the login
will be accepted or refused.
Each line of the login access control table has three fields separated by a ':' character: permission:users:origins
The first field should be a "+" (access granted) or "-" (access denied) character. The second field should be a list of one or more login
names, group names, or ALL (always matches). The third field should be a list of one or more tty names (for non-networked logins), host
names, domain names (begin with "."), host addresses, internet network numbers (end with "."), ALL (always matches) or LOCAL (matches any
string that does not contain a "." character). If you run NIS you can use @netgroupname in host or user patterns.
The EXCEPT operator makes it possible to write very compact rules.
The group file is searched only when a name does not match that of the logged-in user. Only groups are matched in which users are explicitly
listed: the program does not look at a user's primary group id value.
FILES
/etc/login.access The login.access file resides in /etc.
SEE ALSO login(1), pam(8)AUTHORS
Guido van Rooij
BSD April 30, 1994 BSD
Check Out this Related Man Page
LOGIN.ACCESS(5) BSD File Formats Manual LOGIN.ACCESS(5)NAME
login.access -- login access control table
DESCRIPTION
The login.access file specifies on which ttys or from which hosts certain users are allowed to login.
At login, the /etc/login.access file is checked for the first entry that matches a specific user/host or user/tty combination. That entry can
either allow or deny login access to that user.
Each entry have three fields separated by colon:
o The first field indicates the permission given if the entry matches. It can be either ``+'' (allow access) or ``-'' (deny access) .
o The second field is a comma separated list of users or groups for which the current entry applies. NIS netgroups can used (if configured)
if preceeded by @. The magic string ALL matches all users. A group will match if the user is a member of that group, or it is the user's
primary group.
o The third field is a list of ttys, or network names. A network name can be either a hostname, a domain (indicated by a starting period),
or a netgroup. As with the user list, ALL matches anything. LOCAL matches a string not containing a period.
If the string EXCEPT is found in either the user or from list, the rest of the list are exceptions to the list before EXCEPT.
BUGS
If there's a user and a group with the same name, there is no way to make the group match if the user also matches.
SEE ALSO login(1)AUTHORS
The login_access() function was written by Wietse Venema. This manual page was written for Heimdal.
HEIMDAL March 21, 2003 HEIMDAL
I have two files. One contains names and another file (66 MB, ASCII format) contains details of persons. How do I compare the names in the first file with the second file and write the matches to a third file. I would prefer this to be solved in UNIX or VB.
Thanks. (2 Replies)
Hi there thanks for checking in.
I run a helpdesk with about 500 users login onto a network
and then onto a Unix box.
Sometimes people use other people's login's.:-(
All user's use there own PC.( I.P )
Is there a way that when somebody logs onto the unix box with a different I.P that the... (6 Replies)
HI,
Working with apps that run accross 8 AIX 4.3's
Lets call them A, B,C D-H.
Unfortunatly only one of them has the man pages installed, (A).
My Q, is there any way that an authorized user can login into either B, C or D-H, type man at command prompt and get connected to A to view its man... (4 Replies)
Hi all,
I have a problem not really dramatic but realyl annoying:
i've got a groups of users who logon a sunos 2.3 box via a windows telnet client (KEAI, but this is not the problem).
they login as perso1 and password.
It takes a very very very long time to get in.
If i log on the same box... (2 Replies)
I created a user, i login as a root. I add him in the group where he can access and login as a root! I checked it in users' list and in group's list, he is there. My problem is this, I cant login using the username/account I just created! What should i do to use and login the user/account i've just... (5 Replies)
Hi all,
I am trying to enable samba access to administrator. I have added the user, but i am not able to login as administrator. But for other users i am able to login. Can anyone help me out in fixing this.
Thank You in advance. (2 Replies)
Hi,
how do you display login names of users logged on but in a list? I tried 'users' but that is giving all the user login names on 1 line, I want 1 login name on each line like a list. How do I do that? (2 Replies)
Hello All,
I receive a file from another server with file permission rw-r--r-- and owner of the file is the sFTP login id and group is also different from my login id.
Due to this I cannot move the file from and also cannot do anything on it.
Can anyone help on how to change the file... (2 Replies)
Hi,
I intend to hide messages that appear when I login through telnet like:
Entering character mode
Escape character is '^]'.
Please let me know how to do it ?
Thanks (2 Replies)
Hello friends,
I have scratched my system and after that when I am trying to access the console via root login it's failing with an error message of "permission denied". I am able to access the other login, I am having only problem with root and some other user login. I am using an telnet... (2 Replies)
Hello friends,
I have scratched my system and after that when I am trying to access the console via root login it's failing with an error message of "permission denied". I am able to access the other login, I am having only problem with root and some other user login. I am using an telnet... (7 Replies)
hello,
I'm a littlebit lost...
i have a table of single names and combination of two names and i want a table of ALL single names with ALL combinations (also the indirect ones).
- - - in reality the names are longer, not only a,b,.. and the table is tab-delimited, and the result table... (6 Replies)