topic Re: LOG IN in Operating System - HP-UX

LOG IN

Richard Barcellano — Thu, 08 Jun 2000 05:29:46 GMT

I want to limit the users from logging in more than once. How do I do this? We are using HP-UX 10.20 and K-class server. NIS is also being used.

Re: LOG IN

Dan Am — Thu, 08 Jun 2000 06:16:01 GMT

write an SUID script, that triggeres a deletion routine on the NIS-Master Server.

this gets started from a global login-file or the users ,say .dtprofile that you have to secure properly (i.e. ownwership root with r-x for everybody

my 0.02, have a try.

dan

Re: LOG IN

Anthony Goonetilleke — Thu, 08 Jun 2000 06:45:04 GMT

I think this has been asked before maybe its time for a Forums FAQ :-) how many points would I get for that... Anyway back to the topic
try this..

In your /etc/profile add the following lines

USER=$(whoami)
NBCNX=`who -H | grep ${USER} | grep -v root | wc -l`

if [ ${NBCNX} -gt 2 ]
then
echo "MSG login restrited"
exit
fi

Re: LOG IN

Richard Barcellano — Thu, 08 Jun 2000 06:46:35 GMT

I am not familiar with NIS.
How do I create that SUID script in NIS.
Please write the procedure.

Thank you very much

Re: LOG IN

Dan Am — Thu, 08 Jun 2000 07:13:53 GMT

please clarify:
do you want the user to be deleted after first login? that was my answer.

or do you want to have only one
login at a time ?
then Anthonys script points the way.

Re: LOG IN

Richard Barcellano — Thu, 08 Jun 2000 08:00:24 GMT

I want to have only one
login at a time.

Re: LOG IN

Richard Barcellano — Fri, 09 Jun 2000 02:44:07 GMT

In your /etc/profile add the following lines

USER=$(whoami)
NBCNX=`who -H | grep ${USER} | grep -v root | wc -l`

if [ ${NBCNX} -gt 2 ]
then
echo "MSG login restrited"
exit
fi

****

I followed this instructions but still users can login more than once.

The error I encountered was
/etc/profile [137] who: not found

One more thing, we are also using CDE Deskstop environment. Help is still needed.

Thank you in advance.

Re: LOG IN

Anthony Goonetilleke — Fri, 09 Jun 2000 03:03:14 GMT

try specifiying the whole path for who

i.e /usr/bin/who

Re: LOG IN

Richard Barcellano — Fri, 09 Jun 2000 05:22:31 GMT

I specified the whole path and no errors were encountered but I can still login more than once. I logged into the server using the local console of the server and another using a remote terminal. Both were successful.
For example, the user 'jessie' has logged in already and he wants to log in again using the same username using a remote terminal. How do I prevent Jessie from logging in again?

Re: LOG IN

Dan Am — Fri, 09 Jun 2000 06:25:34 GMT

if [ ${NBCNX} -gt 1 ] # (not two !)
then
echo "MSG login restrited"
exit
fi

Re: LOG IN

Dan Am — Fri, 09 Jun 2000 06:27:07 GMT

# watch it
# comment got wrapped
# (line 1 and two)

Re: LOG IN

Dan Am — Fri, 09 Jun 2000 07:08:19 GMT

(sorry for my staggered answer. rather early in the morning.)

if you are using cde,

1. cp /usr/dt/sys.dtprofile /etc/dt

2. add the script from anthony

3. make sure users don't have .dtprofile
in their home-directories.

should do the trick.

Re: LOG IN

Richard Barcellano — Fri, 09 Jun 2000 07:39:11 GMT

Should I also change Anthony's script from
grep -v root to grep -v jessie. To prevent Jessie from logging in twice?

I will be using jessie's account to test this and not root.