is my pam_time.so broken or am I using it incorrectly (to restrict http access) ?
 

I've read that PAM can be used to restrict HTTP access for some users, but I can't figure out how to do it in Ubuntu 12.04.

The `/etc/security/time.conf` man page contains this example:

For this to work, `/etc/pam.d/login` needs to have a line

This example works, and I tried to adapt it to limit HTTP access from the console. I added
to `/etc/security/time.conf`, and created `/etc/pam.d/http` with

This doesn't work. I can still use `wget` as non-root from the console.

The latter I'm afraid.


Where did you read that?


PAM stacks are tied to system services and applications that involve authentication, require root privileges or need other user management. There's ways to do what you want from using PAM consolehelper to combining the iptables time and owner modules to whatever-modifying cron jobs but some suggestions may not apply. Please describe in detail what you want to do and if this applies to only 'wget' or also related / equivalent tools and if it applies to a single, a group or all users.