home *** CD-ROM | disk | FTP | other *** search
- Newsgroups: comp.unix.aix
- Path: sparky!uunet!charon.amdahl.com!pacbell.com!iggy.GW.Vitalink.COM!cs.widener.edu!eff!sol.ctr.columbia.edu!emory!rigel.econ.uga.edu!glenn
- From: glenn@rigel.econ.uga.edu (Glenn F. Leavell)
- Subject: Re: secure/non-secure terminal designation
- Message-ID: <1992Nov6.002123.15906@rigel.econ.uga.edu>
- Organization: University of Georgia, Athens
- References: <1992Oct30.140845.6281@rigel.econ.uga.edu> <HARTMANS.92Oct31224752@npc.ece.utexas.edu>
- Date: Fri, 6 Nov 1992 00:21:23 GMT
- Lines: 25
-
- In article <HARTMANS.92Oct31224752@npc.ece.utexas.edu>,
- hartmans@npc.ece.utexas.edu (Sam Hartman) writes:
-
- >In article <1992Oct30.140845.6281@rigel.econ.uga.edu>,
- >glenn@creator.ucns.uga.edu (Glenn Leavell) writes:
- >
- >Glenn> Is there a way to configure AIX so that the user 'root' can only login
- >Glenn> directly from specified (secure) terminals? In the case where a direct
- >Glenn> login is not allowed, the 'su' command would have to be used.
- >Glenn> In SunOS this can be done with the 'secure' designation
- >Glenn> (or lack thereof)
-
- > In smit users, you can set the ttys from which a certain user
- >can log in. Set root's ttys to whatever you want (comma separated
- >list), and that will fix the problem. Also, don't forget to disable
- >telnet logins of root (especially if you're on the internet).
-
- Thanks for the response. This solution can be used to force direct root
- logins to be done at the console, but then I can't even su to root
- unless I'm at the console. Note that "su = true" is set.
-
- --
- Glenn Leavell University of Georgia glenn@creator.ucns.uga.edu 706-542-5110
- University Computing and Networking Services, Athens, GA 30602-1911
-
-
