Which Directory Service do you use for your network?
None NIS LDAP LDAP + Kerberos Samba Active Directory eDirectory other ( 711 votes ~ 14 comments )
You are not currently logged in. If you do not have a user account then please consider creating one and logging in before you post your comment. This will allow you to track replies to your comment, and take part in the site much more freely.
To add your comment, fill in all the boxes below and then preview it to make sure you're happy with the way that it looks.
This is the comment you were replying to, attached to the article Handling mail for non-system users with Exim4?:
#5 Re: Handling mail for non-system users with Exim4? Posted by Anonymous (82.153.xx.xx) on Fri 2 Dec 2005 at 08:44 I have a smilar setup and was also looking to give people mail accounts and not much more. However, instead of trying to convince exim and courier to use non-system accounts, I created a shell-users group and used the pam_access module to restrict ssh users as follows: In /etc/pam.d/ssh add the line: account required pam_access.so accessfile=/etc/security/shell-access.conf And then the file /etc/security/shell-access.conf contains: +:shell-users:ALL -:ALL:ALL Now, I feel a lot safer from all the attempts to crack my server by guessing ssh passwords. Still haven't found a good way to let these email users change their passwords yet ...
account required pam_access.so accessfile=/etc/security/shell-access.conf
+:shell-users:ALL -:ALL:ALL
Posting Format:
Inappropriate comments will be removed.
Some help on entry formatting is available
Username:
Password:
[ Advanced Login ]
Register Account
