[Gllug] PAM access.conf controls on ssh

Iain M Conochie iain at shihad.org
Thu May 15 08:51:38 UTC 2008


Good morning gllug'ers

  I am trying to control access to a machine over ssh using the pam 
/etc/security/access.conf file. This is a debian 3.1 box. I have added 
the line

account  required       pam_access.so

to the /etc/pam.d/login file. I also have these lines in the access.conf 
file

- : root : ALL

- : root EXCEPT root : 1.2.3.4.

(obviously the IP is changed :)

But I can still login from other machines than 1.2.3.4. Has anyone 
successfully set this up before?

Cheers

Iain

-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug




More information about the GLLUG mailing list