From 76a61ebb3b1a2500b6eb457d6725cc8f4568d2d8 Mon Sep 17 00:00:00 2001
From: "Andrew G. Morgan" <morgan@kernel.org>
Date: Thu, 27 Jun 2002 05:43:28 +0000
Subject: Relevant BUGIDs: 419307

Purpose of commit: new feature/cleanup

Commit summary:
---------------
made pam_nologin more secure by changing the default behavior and
adding some more features. General code clean up in the process.
---
 modules/pam_nologin/README | 15 +++++++++++++--
 1 file changed, 13 insertions(+), 2 deletions(-)

(limited to 'modules/pam_nologin/README')

diff --git a/modules/pam_nologin/README b/modules/pam_nologin/README
index 0586de66..11dc7635 100644
--- a/modules/pam_nologin/README
+++ b/modules/pam_nologin/README
@@ -5,8 +5,19 @@ This module always lets root in; it lets other users in only if the file
 /etc/nologin doesn't exist.  In any case, if /etc/nologin exists, it's
 contents are displayed to the user.
 
+The default return value for this module is PAM_IGNORE, you can
+override this with the successok module argument.
+
 module services provided:
 
-	auth		_authentication and _setcred (blank)
+	auth		_authenticate and _setcred
+	account		_acct_mgmt
+
+optional arguments:
+
+	file=<alternative-nologin-pathname>  - choose a different file
+	successok                            - return PAM_SUCCESS if no file
+
+[Original README by Michael K. Johnson]
+
 
-Michael K. Johnson
-- 
cgit v1.2.3