Am Samstag 20 November 2010 schrieb Wilko Fokken: > Moin mitnanner, Hallo auch, > Ich weiß nicht, ob mein Debian Sarge hier so veraltet ist, daß meine > Options- Überlegungen für Euch irrelevant sind. Falls nicht: Sieht nicht so aus: ACCESS CONTROL shutdown can be called from init(8) when the magic keys CTRL-ALT-DEL are pressed, by creating an appropriate entry in /etc/inittab. This means that everyone who has physical access to the console keyboard can shut the system down. To prevent this, shutdown can check to see if an authorized user is logged in on one of the virtual consoles. If shut‐ down is called with the -a argument (add this to the invoca‐ tion of shutdown in /etc/inittab), it checks to see if the file /etc/shutdown.allow is present. It then compares the login names in that file with the list of people that are logged in on a virtual console (from /var/run/utmp). Only if one of those authorized users or root is logged in, it will proceed. Otherwise it will write the message shutdown: no authorized users logged in to the (physical) system console. The format of /etc/shut‐ down.allow is one user name per line. Empty lines and com‐ ment lines (prefixed by a #) are allowed. Currently there is a limit of 32 users in this file. Note that if /etc/shutdown.allow is not present, the -a argument is ignored. Manpage zu shutdown aus sysvinit 2.88dsf-12 aus Squeeze. Sowie: shambhala:~> shutdown 2>&1 | head -2 Usage: shutdown [-akrhPHfFnc] [-t sec] time [warning message] -a: use /etc/shutdown.allow PS: Für Debian Sarge gibts seit langer Zeit keine Sicherheitsaktualisierungen mehr. Du machst aber den Eindruck, als könntest Du das wissen ;). Ciao, -- Martin 'Helios' Steigerwald - http://www.Lichtvoll.de GPG: 03B0 0D6C 0040 0710 4AFA B82F 991B EAAC A599 84C7
Attachment:
signature.asc
Description: This is a digitally signed message part.