Add /etc/local/access.conf symlink #313
Merged
Commits on Mar 30, 2023
-
Add /etc/local/access.conf symlink
Currently, /etc/security/access.conf is a wild file (not installed by a package) and has no function (just a copy of /etc/security/access.conf.sample) with comments only. /etc/security/access.conf is used by pam_access which is configured for sshd and most other pam services. Create a symlink from /etc/security/access.conf to /etc/local/access.conf, so that we can install a host specific access file. This is going to be used to restrict access to certain machines to trusted users. Such a file could, for example, look like this: + : ALL : LOCAL + : root (admin) : ALL - : ALL : ALL to allow remote access to root user and the admin group only. If the target file doesn't exists, which should be the default case, pam_access doesn't block the authentication.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.