diff options
author | Steve Langasek <steve.langasek@ubuntu.com> | 2019-01-03 21:22:21 -0800 |
---|---|---|
committer | Steve Langasek <steve.langasek@ubuntu.com> | 2019-01-03 21:22:45 -0800 |
commit | 795badba7f95e737f979917859cd32c9bd47bcad (patch) | |
tree | 212a6a00baa11e9d0ca7bc27b12420d1dce6f07c /modules/pam_securetty/README | |
parent | c55c14c5c6762139ec6695d84ea0e2e917da5264 (diff) | |
parent | ba315ae8effdcad591608c99452dad05c4cf20ab (diff) |
New upstream version 1.1.8
Diffstat (limited to 'modules/pam_securetty/README')
-rw-r--r-- | modules/pam_securetty/README | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/modules/pam_securetty/README b/modules/pam_securetty/README index d4ee5f97..14518411 100644 --- a/modules/pam_securetty/README +++ b/modules/pam_securetty/README @@ -7,7 +7,9 @@ DESCRIPTION pam_securetty is a PAM module that allows root logins only if the user is logging in on a "secure" tty, as defined by the listing in /etc/securetty. pam_securetty also checks to make sure that /etc/securetty is a plain file and -not world writable. +not world writable. It will also allow root logins on the tty specified with +console= switch on the kernel command line and on ttys from the /sys/class/tty/ +console/active. This module has no effect on non-root users and requires that the application fills in the PAM_TTY item correctly. @@ -21,6 +23,12 @@ debug Print debug information. +noconsole + + Do not automatically allow root logins on the kernel console device, as + specified on the kernel command line or by the sys file, if it is not also + specified in the /etc/securetty file. + EXAMPLES auth required pam_securetty.so |