NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > FOCUS-Linux> 2002-q1

From: Kurt Seifried (bugtraqseifried.org)
Date: Fri Jan 11 2002 - 01:32:45 CST

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Hi
>
> Can PAM be used to block user logons by IP address.

Yes.

> i.e. Can PAM be configured to allow user A to access the server from
> x.x.x.x while blocking user B from accessing the server from outside
> 10.10.0.x.

I do not know of a specific module to do this but listfile is a good place
to start. Simply pass the IP and modify the config so that instead of just
username it is username followed by IP's/networks.

> Thanks

Kurt Seifried, kurtseifried.org
A15B BEE5 B391 B9AD B0EF
AEB0 AD63 0B4E AD56 E574
http://www.seifried.org/security/

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]