diff options
Diffstat (limited to 'modules/pam_deny/README')
| -rw-r--r-- | modules/pam_deny/README | 33 |
1 files changed, 30 insertions, 3 deletions
diff --git a/modules/pam_deny/README b/modules/pam_deny/README index 6683bdcc..16845265 100644 --- a/modules/pam_deny/README +++ b/modules/pam_deny/README @@ -1,4 +1,31 @@ -# $Id$ -# +pam_deny — The locking-out PAM module + +━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ + +DESCRIPTION + +This module can be used to deny access. It always indicates a failure to the +application through the PAM framework. It might be suitable for using for +default (the OTHER) entries. + +EXAMPLES + + #%PAM-1.0 + # + # If we don't have config entries for a service, the + # OTHER entries are used. To be secure, warn and deny + # access to everything. + other auth required pam_warn.so + other auth required pam_deny.so + other account required pam_warn.so + other account required pam_deny.so + other password required pam_warn.so + other password required pam_deny.so + other session required pam_warn.so + other session required pam_deny.so + + +AUTHOR + +pam_deny was written by Andrew G. Morgan <morgan@kernel.org> -this module always fails, it ignores all options. |