Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
01-14-2006, 05:15 PM
|
#1
|
|
Member
Registered: Apr 2005
Location: Jordan
Distribution: Debian (Sarge), Ubuntu (6.06)
Posts: 271
Rep: 
|
Looking for layman documentation for PAM
As the title suggests, I'm looking for some documentation for PAM that is a little dumbbed-down 
PS: I'm trying to get an FC3 box to allow ONLY root to reboot/shutdown/halt/poweroff. Also, I want the machine to automatically do an fsck EVERYTIME it is booted up (which happens very rarely).
Any recommendations appreciated. |
|
|
|
|
01-15-2006, 01:42 AM
|
#2
|
|
Moderator
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417
|
there's very little documentation for it really.
for the halt access, i think you should just remove those users from the wheel group (gid 10) and that should prevent them doing it.
as for the fsck thing, use tune2fs to reduce the mount count, but really an ext3 or other journalling filesystem has no reason at all to do this.
|
|
|
|
|
01-15-2006, 01:49 AM
|
#3
|
|
Member
Registered: Apr 2005
Location: Jordan
Distribution: Debian (Sarge), Ubuntu (6.06)
Posts: 271
Original Poster
Rep:
|
Wheel group has root as its only member. Actually I'm pretty sure this is better handled through PAM (at least on FC3), but i can't seem to figure out how to use it.
Just so i'm clear on this point:
ext3 does NOT need fsck? What if bad blocks develop on the disk? would ext3 journalling still be able to recover from that?
Thanx for the info
|
|
|
|
|
01-15-2006, 02:01 AM
|
#4
|
|
Moderator
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417
|
ahh i was assuming it'd be the same as for fc4, which is using wheel (unless i added users myself and forgot. If you comment out the pam_console.so reference then that should top them too. basically that prevents acceptance for any known local users.
|
|
|
|
|
01-15-2006, 02:23 AM
|
#5
|
|
Member
Registered: Apr 2005
Location: Jordan
Distribution: Debian (Sarge), Ubuntu (6.06)
Posts: 271
Original Poster
Rep:
|
It would be very interesting to see where the Fedora Project is headed with regards to PAM. I think it will all be clear with the release of FC5.
Thanx for your help.
[edit]
i got it working, thanx to your last suggestion
[/edit]
Last edited by Notwerk; 01-15-2006 at 02:24 AM.
|
|
|
|
All times are GMT -5. The time now is 06:47 PM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
