search for: pam_namespace

On Wed, Apr 15, 2015 at 5:01 PM, Matthew Miller <mattdm at mattdm.org> wrote: > On Wed, Apr 15, 2015 at 04:15:23PM -0500, Les Mikesell wrote: >> > Why does this directory have to be /tmp rather than a specific >> > directory belonging to twiki? >> Twiki is a perl web application run under apache. It doesn't have its >> own uid. It doesn't

...ithout systemd? That just happened > to be the first thing I've tried to move over that wasn't already > packaged and adapted - I expect to hit many more. This isn't really a systemd thing. It's a standard Linux kernel feature, which could also be enabled with (for example) pam_namespace. Systemd happens to make it easy, so we started enabling it for services which would benefit on Fedora, and that was inherited into RHEL and CentOS. See the change page for this <https://fedoraproject.org/wiki/Features/ServicesPrivateTmp>. If you're really interested in learning every po...

...just happened >> to be the first thing I've tried to move over that wasn't already >> packaged and adapted - I expect to hit many more. > > This isn't really a systemd thing. It's a standard Linux kernel > feature, which could also be enabled with (for example) pam_namespace. > Systemd happens to make it easy, so we started enabling it for services > which would benefit on Fedora, and that was inherited into RHEL and > CentOS. See the change page for this > <https://fedoraproject.org/wiki/Features/ServicesPrivateTmp>. > > If you're really in...

Thank for your answer: But i dont know understand why is following not working: I want to restrict the ssh access for a special domain member: In my "sshd_config" i added: AllowGroups restrictaccess root With user2 im able to login via ssh! log: pam_krb5(sshd:auth): user user2 authenticated as user2 at ROOTRUDI.DE With user1 im not! log: User user1 from 192.168.0.100 not allowed