[CentOS] pam_succeed_if
Daniel De Marco
ddm at bartol.udel.edu
Fri Jun 10 13:55:53 UTC 2011
* John Hodrien <J.H.Hodrien at leeds.ac.uk> [06/10/2011 05:43]:
> If you succeed on pam_unix, you're done. So a local account doesn't need
> further checks. The next check ensures that a non-local source (say NIS/LDAP)
> doesn't allow logins to system accounts (UID<500). Since you've got none, it
> makes no difference, since you either fail on that line, or you fail on the
> pam_deny.
Yeah, I guess that with a non-local source it may make sense...
Thanks, Daniel.
More information about the CentOS
mailing list