Date: Wed, 07 Nov 2001 12:26:26 -0500 From: Daniel Frazier <dfrazier@magpage.com> To: Daniel Frazier <dfrazier@magpage.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Any progress on bin/25263? was: Re: login.access borked??? Message-ID: <3BE96EC2.70603@magpage.com> References: <3BE852D5.1080902@magpage.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Daniel Frazier wrote: > /etc/login.access doesn't seem to be working as expected. I've tried > to restrict logins using all the different values in the origin field > that I can think of, but the only one that works as expected is if I > use ALL. If I have this line... > > -:dfrazier:ALL > > ...I am prevented from logging into the server as dfrazier from my > workstation, but if I use this line... > > -:dfrazier:216.155.24.136 > > ...I can log in even though that is my workstation's ip. Is anyone > successfully using login.access to restrict logins to specific login > id's? > ok, it seems that I'm running into the problem described in bin/25263, http://www.freebsd.org/cgi/query-pr.cgi?pr=25263. Any progress on this? I know a workaround would be to use hostnames in login.access, but they're too easily spoofed to make me feel confident that I'm restricting root logins like I want to. -- ---------------------------------------------------------------------- Daniel Frazier <dfrazier@magpage.com> Tel: 302-239-5900 Ext. 231 Systems Administrator Fax: 302-239-3909 MAGPAGE, We Power the Internet WWW: http://www.magpage.com/ "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." - Benjamin Franklin, Historical Review of Pennsylvania, 1759. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3BE96EC2.70603>