Just to finish this one:
My goal was to only use pam_access.so if the service was sshd or login.
This configuration in common-account achieves that:
account[default=1 success=ignore] pam_succeed_if.so service in
sshd:login quiet
accountrequiredpam_access.s
Well thank you for this delightful answer.
Yes, one could configure something like
+ : nobody : crond
But that is something I would like to avoid (which I stated in the
first email) since that would imply having this config on 500+
machines (each has the same access.conf)
I am looking for the p
2 matches
Mail list logo
