Hello,
in addition to the real console, I'd like to access my server via ssh but restrict this access to one computer of the local network.
So I tried to use these lines in /etc/login.access:
Now when I connect to the server from 192.168.2.102 or login directly at the console(ttyv0) as an user that is member of wheel and try to use su to become root I get this:
Why that? How do these lines in login.access disable the abillity to become root via su-command?
Whithout any restrictions in login.access the users in wheel-group are able to become root...
Thanks,
Nokobon
in addition to the real console, I'd like to access my server via ssh but restrict this access to one computer of the local network.
So I tried to use these lines in /etc/login.access:
Code:
+:ALL:ttyv0
+:ALL:192.168.1.102
-:ALL:ALL
Now when I connect to the server from 192.168.2.102 or login directly at the console(ttyv0) as an user that is member of wheel and try to use su to become root I get this:
Code:
pam_login_access: pam_sm_acct_mgmt: root is not allowed to log in on /dev/tty..)
Why that? How do these lines in login.access disable the abillity to become root via su-command?
Whithout any restrictions in login.access the users in wheel-group are able to become root...
Thanks,
Nokobon