https://community.hpe.com/t5/operating-system-hp-ux/restricting-access/m-p/2899469#M104643 Just a little note. Any user id below 100 is for the system. Don't mess with those. If you delete them your system could have a major malfuncion. Don't change their entries in /etc/profile because they need the priviledges they have.<BR /><BR />You can set up a file called /var/adm/inetd.sec<BR /><BR />This can let you fine tune who can access the system by what protocol and where.<BR /><BR />If this is a security issue, you might find the Bastille security hardeninig utility of use. I've included a link.<BR /><BR /><A href="https://payment.ecommerce.hp.com/cgi-bin/swdepot_parser.cgi/cgi/try.pl?productNumber=B6849AA&amp;date=" target="_blank">https://payment.ecommerce.hp.com/cgi-bin/swdepot_parser.cgi/cgi/try.pl?productNumber=B6849AA&amp;date=</A><BR /><BR />P Fri, 07 Feb 2003 14:11:22 GMT Steven E. Protter 2003-02-07T14:11:22Z https://community.hpe.com/t5/operating-system-hp-ux/restricting-access/m-p/2899465#M104639 Hi,<BR />Does anyone now how to quickly restrict login access to root and informix users without deleting other accounts on the system.<BR />Thanks,<BR />Trystan. Fri, 07 Feb 2003 12:14:58 GMT https://community.hpe.com/t5/operating-system-hp-ux/restricting-access/m-p/2899465#M104639 trystan macdonald 2003-02-07T12:14:58Z https://community.hpe.com/t5/operating-system-hp-ux/restricting-access/m-p/2899466#M104640 Trystan,<BR /><BR />Well, there's the nologin feature of /etc/default/security, but that keeps everyone but root out. For more granularity, you would need to have a global login script (like /etc/profile) and do some sort of checking in there, like for the presence of a file called /etc/justrootandinformix, and do an exit for everyone else.<BR /><BR />Pete Fri, 07 Feb 2003 12:21:50 GMT https://community.hpe.com/t5/operating-system-hp-ux/restricting-access/m-p/2899466#M104640 Pete Randall 2003-02-07T12:21:50Z https://community.hpe.com/t5/operating-system-hp-ux/restricting-access/m-p/2899467#M104641 Hi Trystan,<BR /><BR />root login only on console and su -<BR /><BR />#echo console &gt;&gt; /etc/securetty<BR /><BR />informix,<BR />take a look at next link,<BR /><A href="http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x59d7cdec06f1d61190050090279cd0f9,00.html" target="_blank">http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x59d7cdec06f1d61190050090279cd0f9,00.html</A><BR /><BR />Robert-Jan. Fri, 07 Feb 2003 12:23:30 GMT https://community.hpe.com/t5/operating-system-hp-ux/restricting-access/m-p/2899467#M104641 Robert-Jan Goossens 2003-02-07T12:23:30Z https://community.hpe.com/t5/operating-system-hp-ux/restricting-access/m-p/2899468#M104642 Hi,<BR /><BR />- vipw and add comment sign (or anything else) to username or password for non-administrative users. Remove this later to allow access again.<BR /><BR />- edit /etc/profile: check on loginname and exit if different from root,informix,...<BR /><BR />- ...<BR /><BR />Stay logged in on one terminal, and test login. Don't lock yourself out.<BR /><BR />good luck,<BR />Thierry. Fri, 07 Feb 2003 12:25:56 GMT https://community.hpe.com/t5/operating-system-hp-ux/restricting-access/m-p/2899468#M104642 Thierry Poels_1 2003-02-07T12:25:56Z https://community.hpe.com/t5/operating-system-hp-ux/restricting-access/m-p/2899469#M104643 Just a little note. Any user id below 100 is for the system. Don't mess with those. If you delete them your system could have a major malfuncion. Don't change their entries in /etc/profile because they need the priviledges they have.<BR /><BR />You can set up a file called /var/adm/inetd.sec<BR /><BR />This can let you fine tune who can access the system by what protocol and where.<BR /><BR />If this is a security issue, you might find the Bastille security hardeninig utility of use. I've included a link.<BR /><BR /><A href="https://payment.ecommerce.hp.com/cgi-bin/swdepot_parser.cgi/cgi/try.pl?productNumber=B6849AA&amp;date=" target="_blank">https://payment.ecommerce.hp.com/cgi-bin/swdepot_parser.cgi/cgi/try.pl?productNumber=B6849AA&amp;date=</A><BR /><BR />P Fri, 07 Feb 2003 14:11:22 GMT https://community.hpe.com/t5/operating-system-hp-ux/restricting-access/m-p/2899469#M104643 Steven E. Protter 2003-02-07T14:11:22Z