2012-02-01 15:16:30 +04:00
|
|
|
#%PAM-1.0
|
|
|
|
|
auth required pam_env.so
|
2020-05-11 23:29:40 +00:00
|
|
|
auth sufficient pam_unix.so try_first_pass likeauth nullok
|
2012-02-01 15:16:30 +04:00
|
|
|
auth required pam_deny.so
|
|
|
|
|
|
2013-11-13 20:54:03 +04:00
|
|
|
account required pam_unix.so
|
2012-02-01 15:16:30 +04:00
|
|
|
|
2020-05-11 23:29:40 +00:00
|
|
|
# Make sure you use use_authtok below if and only if you
|
|
|
|
|
# want to stack a password checking tool like pam_pwquality
|
|
|
|
|
password sufficient pam_unix.so try_first_pass nullok sha512 shadow
|
2012-02-01 15:16:30 +04:00
|
|
|
password required pam_deny.so
|
|
|
|
|
|
|
|
|
|
session optional pam_keyinit.so revoke
|
|
|
|
|
session required pam_limits.so
|
2020-05-11 23:29:40 +00:00
|
|
|
session optional pam_env.so
|
|
|
|
|
session optional pam_umask.so
|
|
|
|
|
session optional pam_systemd.so
|
2012-02-01 15:16:30 +04:00
|
|
|
session [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid
|
2013-11-13 20:54:03 +04:00
|
|
|
session required pam_unix.so
|
