NAME¶
calife.auth —
format of the calife
authorization file
DESCRIPTION¶
The
calife.auth files are files consisting of newline
separated records, one per user, containing three colon (``:'') separated
fields. These fields are as follows:
- name
- User's login name / @group.
- shell
- User's shell
- user1,user2,...,usern
- List of logins allowed for the user name
The
name field is the login used to access the computer
account.
The login name must never begin with a hyphen (``-''); also, it is strongly
suggested that neither upper-case characters or dots (``.'') be part of the
name, as this tends to confuse mailers. No field may contain a colon (``:'')
as this has been used historically to separate the fields in the user
database.
One alternative syntax is to use
@group to specify that
any user in the given
group is allowed to use
calife to become root.
The
shell field is the command interpreter the user
prefers. If there is nothing in the
shell field, the
user's current shell as found in the (
/etc/passwd) file is
assumed.
If the
shell field is '*', then the account is considered
as
locked and access is denied.
If the third parameter is specified, it is assumed to be the list of login the
current user has the right to become. It enables use of
calife for non-root only accounts.
calife.auth is placed in
/etc.
EXAMPLE¶
# calife.auth-dist
#
# Format
#
# name[:shell_to_be_run][:user1,user2,usern]
#
fcb
roberto:/bin/tcsh
pb::guest,blaireau
SEE ALSO¶
calife(1),
su(1)
HISTORY¶
A
calife.auth file format appeared in DG/UX and SunOS, written
for Antenne 2 in 1991. It has evolved with the extra shell specification. The
login list was reintroduced in 2.7.
AUTHOR¶
Ollivier Robert <roberto@keltia.frmug.fr.net>