1 |
On Thursday 12 November 2009 21:56:00 Alan McKinnon wrote: |
2 |
> On Thursday 12 November 2009 23:46:27 Mick wrote: |
3 |
> > On Thursday 12 November 2009 21:34:24 Paul Hartman wrote: |
4 |
> > > On Thu, Nov 12, 2009 at 2:01 PM, Mick <michaelkintzios@×××××.com> wrote: |
5 |
> > > > I should know how to do this ... |
6 |
> > > > |
7 |
> > > > It isn't as simple as commenting out vc7 in /etc/securetty, right? |
8 |
> > > > The persistent offenders would try to start another X session on a |
9 |
> > > > different vc. |
10 |
> > > > |
11 |
> > > > Is there a trick I could add in /etc/pam.d/login or one of the |
12 |
> > > > /etc/pam.d/gdm* files perhaps? |
13 |
> > > |
14 |
> > > How do you start X? Do you use xdm/kdm/gdm or do you just "startx" or |
15 |
> > > use some other method? |
16 |
> > |
17 |
> > This box is configured to start X with gdm and it does not have kdm |
18 |
> > installed. |
19 |
> |
20 |
> http://www.google.com/search?q=block+root+login+gdm&ie=UTF-8&oe=UTF-8 |
21 |
> |
22 |
> Hits #1, 2 and 3 |
23 |
|
24 |
Thank you Alan, hadn't seen #1 which aligns with #3. It seems legit so I will |
25 |
try this in /etc/pam.d/gdm: |
26 |
|
27 |
auth required pam_succeed_if.so user != root quiet |
28 |
|
29 |
-- |
30 |
Regards, |
31 |
Mick |