From owner-freebsd-questions@FreeBSD.ORG Tue Jun 14 14:11:34 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1386716A41C for ; Tue, 14 Jun 2005 14:11:34 +0000 (GMT) (envelope-from freebsd-questions-local@be-well.ilk.org) Received: from mail28.sea5.speakeasy.net (mail28.sea5.speakeasy.net [69.17.117.30]) by mx1.FreeBSD.org (Postfix) with ESMTP id C585243D1D for ; Tue, 14 Jun 2005 14:11:33 +0000 (GMT) (envelope-from freebsd-questions-local@be-well.ilk.org) Received: (qmail 12745 invoked from network); 14 Jun 2005 14:11:33 -0000 Received: from dsl092-078-145.bos1.dsl.speakeasy.net (HELO be-well.ilk.org) ([66.92.78.145]) (envelope-sender ) by mail28.sea5.speakeasy.net (qmail-ldap-1.03) with SMTP for ; 14 Jun 2005 14:11:33 -0000 Received: by be-well.ilk.org (Postfix, from userid 1147) id DB1D754; Tue, 14 Jun 2005 10:11:31 -0400 (EDT) Sender: lowell@be-well.ilk.org To: =?iso-8859-1?q?K=F6vesd=E1n_G=E1bor?= To: freebsd-questions@freebsd.org References: <42AAC108.7060000@t-hosting.hu> From: Lowell Gilbert Date: 14 Jun 2005 10:11:31 -0400 In-Reply-To: <42AAC108.7060000@t-hosting.hu> Message-ID: <447jgxyqng.fsf@be-well.ilk.org> Lines: 60 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.3 MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Cc: Subject: Re: login.conf limits X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: freebsd-questions@freebsd.org List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 14 Jun 2005 14:11:34 -0000 Please don't top-post. K=F6vesd=E1n G=E1bor writes: > Hello, >=20 > I've done a new class "shuser" with some limits, rebuild the cap > database and made a new user "tester" with adduser. When it asked for > the login class, I specified shuser, and tried to login with ssh, but > it failed. My shuser class: >=20 > shuser:\ > :passwd_format=3Dmd5:\ > #:passwordtime=3D90d:\ > #:idletime=3D30m:\ > #:login-retries=3D3:\ > #:sessionlimit=3D1:\ > :copyright=3D/etc/COPYRIGHT:\ > :welcome=3D/etc/motd:\ > :setenv=3DMAIL=3D/var/mail/$,BLOCKSIZE=3DK,FTP_PASSIVE_MODE=3DYES= :\ > :path=3D/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin > /usr/local/bin /usr/X11R6/bin ~/bin:\ > #:lang=3Dhu_HU.ISO8859-2:\ > #:charset=3Diso-8859-2:\ > #:ftp-chroot=3Dtrue:\ > :nologin=3D/var/run/nologin:\ > :cputime=3Dunlimited:\ > :datasize=3Dunlimited:\ > :stacksize=3Dunlimited:\ > #:memorylocked=3D15m:\ > #:memoryuse=3D10m:\ > :filesize=3Dunlimited:\ > #:coredumpsize=3D5m:\ > #:openfiles=3D3:\ > #:maxproc=3D3:\ > #:sbsize=3D512k:\ > #:vmemoryuse=3D5m:\ > :priority=3D0:\ > :ignoretime@:\ > :umask=3D027: >=20 > After the first try I inserted those hashmarks before the modified > lines, but it still doesn't work. Did I make something wrong? > Lowell Gilbert wrote: > > >What happens if testuser is assigned the default login class? Does > >the login still fail? [If so, it has nothing to do with your login > > settings.] > > In this case it works. Okay, so it is the login settings. I'm a little suspicious of commenting out the lines in the middle of the settings. I think that may comment out the continuation character, ending the setting at that point. Try moving those lines out of the way and rebuild the database. It also might be a good idea to include the default entry explicitly at the end, to make sure you know you have good defaults.