|Main Archive Page > Month Archives > fedora-users archives|
On 10/09/2011 05:12 PM, Beartooth wrote:
> A regular on a private list I follow has written :
> [...] therein lies the beauty of the newer flavors of *nix. You
> can lock root (and SU) access to physical machines ONLY, and
> even lock it down to specific logins ONLY on specific machines.
> How would Fedora do that?
There's the pam_securetty module that filters root logins to a set of
"secure" ttys listed in /etc/securetty. You can use that as a required
pam module in the system authentication configuration to restrict root
logins to physical terminals.
-- users mailing list firstname.lastname@example.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines