John Ferlan answered my quick question that appeared in my recent SUMMARY.
> Quick question: do the locking criteria in the default template apply to
> root or is root handled as a special case? I'd hate to think that
> someone could lock root's account by just trying to log in as root a
> certain (fairly small) number of times. Perhaps root is always allowed
> to log in at the console? Or should I create a special set of security
> attributes for root?
The answer is that root is always allowed to log in at the console
regardless of any "locked" settings. In addition, the file /etc/securettys
defines which terminals root is allowed to use. By default this only
includes the console. Thus it is unlikely that an outsider would hack
directly on the root account (unless, of course, I modify this file or
keep the machine room's door unlocked all the time).
*****************************************************************************
Peter
pchapin_at_solstice.vtc.vsc.edu
http://solstice.vtc.vsc.edu/~pchapin/
Received on Thu Jan 21 1999 - 18:45:35 NZDT