[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Can a daemon listen only on some interfaces?

On Mon, Dec 10, 2001 at 10:00:19AM +1000, mdevin wrote:
> Here is what I did:

[snip clean solution :) ]
 
> The only remaining question I have is:  Is this the correct way to use
> the - and + permission setting in /etc/security/access_conf ?  'Cause
> what I have done here is to allow specific users first and then disallow
> all by default.  It seems to work so I can only presume that it is a
> case of the first matching rule wins.  Is this correct?

yes, and the confirmation extracted from access.conf 

# When someone logs in, the table is scanned for the first entry that
# matches the (user, host) combination, or, in case of non-networked
# logins, the first entry that matches the (user, tty) combination.  The
# permissions field of that table entry determines whether the login will 
# be accepted or refused.

hope that helps
Reply to: