[Pkg-shadow-devel] Debian package 'nologin' - log false attemps to
syslog
Jari Aalto
jari.aalto at cante.net
Thu Sep 15 07:19:38 UTC 2005
Hi,
In case my messages has not arrived, I'm brifing the issue again.
I've packages the FreeBSD 'nologin' program that can be used
as replacement for /bin/false in /etc/passwd file. This offers
better security, because the accounts that have been disabled this
way send no indication if they are being hacked on.
Replacing /bin/false with /bin/nologin behaves the same, but
also records the attemps to syslog.
Q: Would you be interested in taking the nologin into the core
of 'login' package.
OR
should the additional 'nologin' feature kept as it is and packaged and
distributed separately. Users interested in security can install this
additional feature.
The package has sponsor, it was sent to FTP masters, but they
suggested to contact you first before including it to unstable.
Jari
P.S it's available through APT (direct HTTP browsing is not allowed) at:
deb http://debian.cante.net/debian unstable main
deb-src http://debian.cante.net/debian unstable main
# apt-get install nologin
Jari
More information about the Pkg-shadow-devel
mailing list