Man page 5 : sepermit.conf

"SEPERMIT.CONF" "5" "11/04/2009" "Linux-PAM Manual" "Linux-PAM Manual"

Cette page de documentation est issue d'une conversion automatique de developpez.com.
Les traductions proviennent des sites Debian, Linux Kernel et du projet Perkamon.
N'hésitez pas à laisser vos suggestions, avis ou commentaires : 12 commentaires .

Article lu fois.

L'article

Publié le 26 août 2013

1. NAME▲

sepermit.conf - configuration file for the pam_sepermit module

2. DESCRIPTION ▲

The lines of the configuration file have the following syntax:

<user>[:<option>:<option>...]

The user can be specified in the following manner:

.ie n \ \h'-04'\h'+03'\c .

2.3 . a username

.ie n \ \h'-04'\h'+03'\c .

2.3 . a groupname, with \\fR syntax. This should not be confused with netgroups.

.ie n \ \h'-04'\h'+03'\c .

2.3 . a SELinux user name with %seuser syntax.

The recognized options are:

exclusive
Only single login session will be allowed for the user and the user\'s processes will be killed on logout.

ignore
The module will never return PAM_SUCCESS status for the user. It will return PAM_IGNORE if SELinux is in the enforcing mode, and PAM_AUTH_ERR otherwise. It is useful if you want to support passwordless guest users and other confined users with passwords simultaneously.

The lines which start with # character are comments and are ignored.

3. EXAMPLES ▲

These are some example lines which might be specified in /etc/security/sepermit.conf.

.

Sélectionnez

%guest_u:exclusive
%staff_u:ignore
%user_u:ignore

4. SEE ALSO ▲

pam_sepermit(8), pam.d(5), pam(8), selinux(8),

5. AUTHOR ▲

pam_sepermit and this manual page were written by Tomas Mraz <>

Le contenu de cet article est rédigé par Developpez.com et est mis à disposition selon les termes de la Licence Creative Commons Attribution 3.0 non transposé.
Les logos Developpez.com, en-tête, pied de page, css, et look & feel de l'article sont Copyright © 2013 Developpez.com.