SLAC CPE Software
Engineering Group |
||||||||||
|
|
|
Programmers' Guides, Users' Guides
PAM is the pluggable authentication modules. It is a system that most Linux distributions have incorporated that gives you fine grained control over how users are authenticated. We use one of the modules, namely, pam_access.so, to create a restrict login access on Linux hosts on CA network. The configuration can be set by individual configuration files located in the /etc/pam.d, the service is the name of the file, e.g. sshd, in this case. Some of the modules have additional configuration files in /etc/security. The /etc/security/access.conf can be used to greatly restrict who can login from where. Take lcls-daemon1 for example:
|
|
Programmers' Guides, Users' Guides, Requirements, Design, Papers, Administration, How-To, Hardware, IOC, Database
Created by: Jingchen Zhou, 27-Aug-2003