[nycbug-talk] host.allow capability in login.conf ignored?

csnyder chsnyder
Mon Oct 18 12:10:56 EDT 2004

I set up a login class for the first time today, which looks like this
in /etc/login.conf:


Ran cap_mkdb and logged in as a student via ssh. I was limited to only
3 processes, which was good (this will be an scponly account). But I
was able to log in from a host which was not in the host.allow list.

Does ssh bypass this somehow? Or is host.allow ignored? I read TFM and
it only said that idletime was unimplemented...


More information about the talk mailing list