[packages/util-linux.git] / login.pamd

#%PAM-1.0
auth		required	pam_listfile.so item=user sense=deny file=/etc/security/blacklist.login onerr=succeed
auth		required	pam_securetty.so
auth		include		system-auth
auth		include		postlogin
account		required	pam_shells.so
account		required	pam_nologin.so
account		required 	pam_access.so
account		include		system-auth
password	include		system-auth
# pam_selinux.so close should be the first session rule
# session		required	pam_selinux.so close
session		required	pam_loginuid.so
session		include		system-auth
session		include		postlogin
session		optional	pam_console.so
session		optional	pam_mail.so
#session		optional	pam_motd.so motd=/etc/motd
# pam_selinux.so open should only be followed by sessions to be executed in the user context
#session		required	pam_selinux.so open
#session		optional	pam_keyinit.so force revoke
-session		optional	pam_ck_connector.so
Commit	Line	Data
f212f39a	1	#%PAM-1.0
	2	auth required pam_listfile.so item=user sense=deny file=/etc/security/blacklist.login onerr=succeed
	3	auth required pam_securetty.so
	4	auth include system-auth
0cce356c	5	auth include postlogin
f212f39a	6	account required pam_shells.so
	7	account required pam_nologin.so
	8	account required pam_access.so
	9	account include system-auth
	10	password include system-auth
	11	# pam_selinux.so close should be the first session rule
	12	# session required pam_selinux.so close
d40b541e	13	session required pam_loginuid.so
f212f39a	14	session include system-auth
0cce356c	15	session include postlogin
f212f39a	16	session optional pam_console.so
f212f39a	17	session optional pam_mail.so
2d187ab1	18	#session optional pam_motd.so motd=/etc/motd
f212f39a	19	# pam_selinux.so open should only be followed by sessions to be executed in the user context
	20	#session required pam_selinux.so open
	21	#session optional pam_keyinit.so force revoke
5558d5c1	22	-session optional pam_ck_connector.so