console.perms(5) System Administrator's Manual console.perms(5)NAME
console.perms - permissions control file for users at the system console
DESCRIPTION
/etc/security/console.perms determines the permissions that will be given to priviledged users of the console at login time, and the per-
missions to which to revert when the users log out. It is read by the pam_console module.
The format is:
<class>=space-separated list of words
login-regexp|<login-class> perm dev-glob|<dev-class>
revert-mode revert-owner[.revert-group]
The revert-mode, revert-owner, and revert-group fields are optional, and default to 0600, root, and root, respectively.
The words in a class definition are evaluated as globs if they refer to files, but as regular expressions if they apply to a console defi-
nition. Do not mix them.
Any line can be broken and continued on the next line by using a character as the last character on the line.
The login-class class and the login-regexp word are evaluated as regular expressions. The dev-class and the dev-glob word are evaluated as
shell-style globs. If a name given corresponds to a directory, and if it is a mount point listed in /etc/fstab, the device node associated
with the filesystem mounted at that point will be substituted in its place.
Classes are denoted by being contained in < angle bracket > characters; a lack of < angle brackets > indicates that the string is to be
taken literally as a login-regexp or a dev-glob, depending on its input position.
SEE ALSO pam_console(8)pam_console_apply(8)console.apps(5)AUTHOR
Michael K. Johnson <johnsonm@redhat.com>
Red Hat Software 1999/2/3 console.perms(5)
Check Out this Related Man Page
console.handlers(5) System Administrator's Manual console.handlers(5)NAME
console.handlers - file specifying handlers of console lock and unlock events
DESCRIPTION
/etc/security/console.handlers determines which programs will be run when an user obtains the console lock at login time, and when the user
loses it on log out. It is read by the pam_console module.
The format is:
handler-filename lock|unlock [flag ...]
Where handler-filename is a name of the executable to be run, lock or unlock specifies on which event it should be run, and flags specify
how should pam_console call it.
Additionally there should be a line which specifies glob patterns of console devices.
The format of this line is: console-name consoledevs regex [regex ...]
Where console-name is a name of the console class - currently ignored - and regexes are regular expression patterns which specify the name
of the tty device. Only the first such line is consulted.
FLAGS
logfail
The pam_console module should log error to the system log if the return value of the handler is not zero or if the handler can not
be executed.
wait The pam_console should wait for the handler to exit before continuing.
setuid The handler should be executed with uid/gid of the user which obtained the console lock.
tty The handler will get a tty name as obtained from PAM as a parameter.
user The handler will get an user name as obtained from PAM as a parameter.
Anything else will be added directly as a parameter to the handler executable.
SEE ALSO pam_console(8)AUTHOR
Tomas Mraz <tmraz@redhat.com>
Red Hat 2005/3/18 console.handlers(5)
hey,
ive got a quetion for any one who can answer, im running mac os x and when you're at the login screen and type in ">console" as the user name it launches a complete command line enviroment once in that enviroment are there any text based utilities that i could use to connect to my isp? (6 Replies)
Hi
How can I prevent anyone from logging in as root directly? I have added the line
console=/dev/null
to the file /etc/default/login
I was still able to login as root from the console. Please advice.
Thanks
Srini (4 Replies)
I am running sco 5.06 open server
We have encountered the problem while login into the live Online server. After putting the usr as root, the system is taking time(20 Sec) to show me ‘Password:'. Sometimes the system shows login time out. Again sometimes the system is showing password:, after... (3 Replies)
hey guys,
i'm having some problems with my understanding of this whole regexp thing.
I'm just exploring here really by trying to do various match & filter & print stuff on the console.
I figured i want to get the IP of an interface. So my idea here was that first i filter to extract only... (4 Replies)
I want to enable root login just from one terminal machine, can i do that via /etc/default/login in console=/dev/console line ?
and if so what i have to type exactly, another question is it normal to edit the files inside defaults directly ? or i can copy it to /etc/ and edit it there and its... (3 Replies)
I'm doing a security sweep of a Sun Sol 5.8 system. The file: /dev/console, which links to /devices/pseudo/cn@0:console, has the following perms: crw--w--w- I would like to get rid of the world write permissions. I can change the file permissions, but as soon as log back in, they are changed... (4 Replies)
I edited my /etc/default/login file and commented the line:
# If CONSOLE is set, root can only login on that device.
# Comment this line out to allow remote login by root.
#
#CONSOLE=/dev/console
I still cant login thru telnet or ssh.
What else do i have to do to be able to login... (14 Replies)
Hi
I can neither able to login on console with my user ID nor with root user on HP-UX 9000/800 v11.11. I am putting the correct Password.While my colleague can login as his user on console. What is the reason that I can't login to console?
Pl. help & thanks in advance.
Mike (5 Replies)
Hi,
I am having an input file which contains a group of words,if one specific word comes which goes to next line.
example:
input file===>
shashi country= india comapny= none shashi shashi company= NONE shashi=my name
output===>
shashi country= india comapny= none
shashi
shashi... (6 Replies)
Dear Forum,
I had this case before, all of sudden all users including root can't login. What done is by connecting to console port and resetting root password, "pwunconv" command, reboot server.
My question is, how this can happen???
thanks
:confused: (3 Replies)
I have disabled rlogin for root successfully , but after that i could not login to root from console and could not su to root from other users as it responded as expired account
I did not have any admin user but I have managed to recover the situation by accessing rootvg before mounting it, but... (5 Replies)
Hi All,
Whenever I login to server via console, after providing username (root) it displays a banner message. I want to remove this message
Serverabc : root
Welcome to Server !!!
Password:
It is Centos 5.4 box.
I have checked /etc/issue and /etc/motd. It does not... (8 Replies)
I have an external drive (1 TB) attached via usb to a server running Red Hat Linux 6.2. During an application install one step requires perms set by root. Even though I could ls -l and see that root was able to do the 4755 but the install would fail. Someone pointed out the dot in the permission... (3 Replies)
Hi,
I'm trying to use find in kshell (AIX) to find all files with perms of
write for other
AND
any execute bit set.
e.g:
r--r-x-w- would qualify
and rw-rw--wx would qualify
but ---rwxr-xr-x wouldn't qualify
So far, I've been trying something like this:
find . -type f -perm... (4 Replies)
Hello all,
By mistake i edited sshd_config file and made passwordauthentication no , Now i don't have key to login.
Is there any way, i can revert the changes, I am not able to login to the box at well.
Need help.
Thanks,
saurau (3 Replies)