[packages/util-linux.git] / login.pamd

#%PAM-1.0
auth		required	pam_listfile.so item=user sense=deny file=/etc/security/blacklist.login onerr=succeed
auth		required	pam_securetty.so
auth		include		system-auth
auth		include		postlogin
account		required	pam_shells.so
account		required	pam_nologin.so
account		required 	pam_access.so
account		include		system-auth
password	include		system-auth
# pam_selinux.so close should be the first session rule
# session		required	pam_selinux.so close
session		required	pam_loginuid.so
session		include		system-auth
session		include		postlogin
session		optional	pam_console.so
session		optional	pam_mail.so
#session		optional	pam_motd.so motd=/etc/motd
# pam_selinux.so open should only be followed by sessions to be executed in the user context
#session		required	pam_selinux.so open
#session		optional	pam_keyinit.so force revoke
-session		optional	pam_ck_connector.so
Commit	Line	Data
	1	#%PAM-1.0
	2	auth required pam_listfile.so item=user sense=deny file=/etc/security/blacklist.login onerr=succeed
	3	auth required pam_securetty.so
	4	auth include system-auth
	5	auth include postlogin
	6	account required pam_shells.so
	7	account required pam_nologin.so
	8	account required pam_access.so
	9	account include system-auth
	10	password include system-auth
	11	# pam_selinux.so close should be the first session rule
	12	# session required pam_selinux.so close
	13	session required pam_loginuid.so
	14	session include system-auth
	15	session include postlogin
	16	session optional pam_console.so
	17	session optional pam_mail.so
	18	#session optional pam_motd.so motd=/etc/motd
	19	# pam_selinux.so open should only be followed by sessions to be executed in the user context
	20	#session required pam_selinux.so open
	21	#session optional pam_keyinit.so force revoke
	22	-session optional pam_ck_connector.so