SECURETTY(5) Linux Programmer's Manual SECURETTY(5)NAME
securetty - file which lists terminals from which root can log in
DESCRIPTION
The file /etc/securetty contains the names of terminals (one per line, without leading /dev/) which are considered secure for the transmis-
sion of certain authentication tokens.
It is used by (some versions of) login(1) to restrict the terminals on which root is allowed to login. See login.defs(5) if you use the
shadow suite.
On PAM enabled systems, it is used for the same purpose by pam_securetty(8) to restrict the terminals on which empty passwords are
accepted.
FILES
/etc/securetty
SEE ALSO login(1), login.defs(5), pam_securetty(8)COLOPHON
This page is part of release 4.15 of the Linux man-pages project. A description of the project, information about reporting bugs, and the
latest version of this page, can be found at https://www.kernel.org/doc/man-pages/.
Linux 2015-03-29 SECURETTY(5)
Check Out this Related Man Page
PAM_SECURETTY(8) Linux-PAM Manual PAM_SECURETTY(8)NAME
pam_securetty - Limit root login to special devices
SYNOPSIS
pam_securetty.so [debug]
DESCRIPTION
pam_securetty is a PAM module that allows root logins only if the user is logging in on a "secure" tty, as defined by the listing in
/etc/securetty. pam_securetty also checks to make sure that /etc/securetty is a plain file and not world writable.
This module has no effect on non-root users and requires that the application fills in the PAM_TTY item correctly.
For canonical usage, should be listed as a required authentication method before any sufficient authentication methods.
OPTIONS
debug
Print debug information.
MODULE TYPES PROVIDED
Only the auth module type is provided.
RETURN VALUES
PAM_SUCCESS
The user is allowed to continue authentication. Either the user is not root, or the root user is trying to log in on an acceptable
device.
PAM_AUTH_ERR
Authentication is rejected. Either root is attempting to log in via an unacceptable device, or the /etc/securetty file is world
writable or not a normal file.
PAM_INCOMPLETE
An application error occurred. pam_securetty was not able to get information it required from the application that called it.
PAM_SERVICE_ERR
An error occurred while the module was determining the user's name or tty, or the module could not open /etc/securetty.
PAM_USER_UNKNOWN
The module could not find the user name in the /etc/passwd file to verify whether the user had a UID of 0. Therefore, the results of
running this module are ignored.
EXAMPLES
auth required pam_securetty.so
auth required pam_unix.so
SEE ALSO securetty(5), pam.conf(5), pam.d(5), pam(7)AUTHOR
pam_securetty was written by Elliot Lee <sopwith@cuc.edu>.
Linux-PAM Manual 06/04/2011 PAM_SECURETTY(8)
HI,
Working with apps that run accross 8 AIX 4.3's
Lets call them A, B,C D-H.
Unfortunatly only one of them has the man pages installed, (A).
My Q, is there any way that an authorized user can login into either B, C or D-H, type man at command prompt and get connected to A to view its man... (4 Replies)
Hi Friends,
We are currently 5 people using same Unix login-id on different terminals, .sh_history file contains list of commands typed by all 5 peoples(commands history) with the below list :
$tail .sh_history
ls -ltr
pwd
cd ..
ls -ltr
clear
cd temp
more kk.lst
Now my question... (9 Replies)
Hello.
I have created a FS /u00/ and created a non-root login under this FS. Also, disabled direct root login. Now is it possible or worth moving this login over to the root partition or allowing mount/umount + fsck from a standard account. As I am not able to run fsck for this FS.
How to... (5 Replies)
With my SSH, my HP-UX cannot login to root. It will come out a message su: unknown id: root. But I can login by user oracle. I also cannot login to console either by using root or oracle anymore. What shall I do. (5 Replies)
hi everyone!i can login as a root on server, but i want to create another account for someone else to login as root too.how can i do it?
thank you (4 Replies)
I edited my /etc/default/login file and commented the line:
# If CONSOLE is set, root can only login on that device.
# Comment this line out to allow remote login by root.
#
#CONSOLE=/dev/console
I still cant login thru telnet or ssh.
What else do i have to do to be able to login... (14 Replies)
when i am trying to login through root i am getting following error
Last successful login for root: Tue Feb 3 16:44:40 IST-5:30 2009 on pts/tc
Last unsuccessful login for root: Tue Feb 3 16:41:01 IST-5:30 2009 on pts/tc
Please wait...checking for disk quotas
crt0: ERROR couldn't open... (6 Replies)
Hi,
I tried running psrinfo command on couple of machines but found that if i login as root then it works.
But when i login other than root account, I get this error,
$ /usr/sbin/psrinfo -pv | fgrep UltraSPARC
/usr/sbin/psrinfo: illegal option -- p
usage:
psrinfo
... (8 Replies)
I want to build a network, in this network there is only one PC and 50 terminals, 50 students can use this system to study UNIX/Linux.
In the old days, computer was very expensive, many scientists shared a computer with terminals, that means a terminal has no cpu, memory and hardisk.
In... (5 Replies)
Hi folks. This has been bothering me for a while.
Among the 8 virtual desktops I'm using, I have 18 terminals open right now.
I change some of my user configuration (e.g. put a new alias into ~/.bashrc); but in order to use this new added alias, I have to source the config file:
.... (4 Replies)
i have two doubts..
1. what is the use /etc/project file. i renamed this file and when i tried to switch user or login with some user account the login was happening slowly. but when i renamed it to original name it was working fine... why so?
2. unix already has useradd and grouadd for... (4 Replies)
Normally, When we login a remote server, the password does'nt echo as anything. But When I use PieTTY(on windows) to login a linux ssh server, the password echoes as "*". But When I have logged in, I use the ssh command to login the same server locally again, now the password does'nt echo.
I... (7 Replies)
Hello - Could anyone please explain what is login class in unix..? is it supported by Linux, AIX, HP-UX, Solaris?
Also how do we update this when a user is created? I looked into man pages for useradd/usermod and mkuser, but could not find any option to add/update login class for a user.
... (5 Replies)
I stumbled upon this thread and one aspect of it got me thinking. As i am building a small Linux network right now for a friend i would like to hear your opinion on this.
I'd like to respectfully disagree. I think the Linux habit of disabling root login per default is wrong (not entirely... (6 Replies)
Hi,
I find there is some customized linux with application.
When I use login account root and type the password.
It is not allow to login.
But if I login with specified user and password.
Then I use command "su - " and type root passwd.
It allow you to switch to "root" account .
Or if i... (14 Replies)