On Tue, Mar 01, 2005 at 11:11:18AM -0500, Matthew Miller wrote:
*Should* this file be included in system-auth (or at least
login's and
sshd's pam conf), or is it just "yet another access control mechanism and
we've already got a dozen of those and that would just further confuse
people"?
I think that if not, the comment in the file should be changed to mention
that it's not used in the default Fedora/RH config.
Anyone have any opinion on this?
The pam_access mechanism requires that the invoking application define a
PAM_TTY item to be useful. That rules its inclusion right out for many
PAM configurations.
Nalin