On Tuesday 05 June 2007 05:04, Anders Johansson wrote:
Yes it is, but at least in 10.1 and 10.2, it is disabled if UsePAM is set to yes in /etc/ssh/sshd_config. In ssh versions before 4.3p1 it was always checked
Yes, I confirm this. On 10.2 I can ssh into it even there's /etc/nologin after I commented out /etc/pam.d/sshd: #%PAM-1.0 #auth requisite pam_nologin.so auth include common-auth account include common-account password include common-password session required pam_loginuid.so session include common-session The machine that I'm trying to give the demo is SLES10. Man, I guess they've hardened the security on the server version. But, I can swear that I and my friend were able to by pass /etc/nologin on SLES10. I'll ask him ASAP. -- Fajar Priyanto | Reg'd Linux User #327841 | Linux tutorial http://linux2.arinet.org 6:39am up 0:19, 2.6.18.2-34-default GNU/Linux Let's use OpenOffice. http://www.openoffice.org