login.conf revision 58579
1# login.conf - login class capabilities database. 2# 3# Remember to rebuild the database after each change to this file: 4# 5# cap_mkdb /etc/login.conf 6# 7# This file controls resource limits, accounting limits and 8# default user environment settings. 9# 10# $FreeBSD: head/etc/login.conf 58579 2000-03-26 05:41:10Z rwatson $ 11# 12 13# Default settings effectively disable resource limits, see the 14# examples below for a starting point to enable them. 15 16# defaults 17# These settings are used by login(1) by default for classless users 18# Note that entries like "cputime" set both "cputime-cur" and "cputime-max" 19 20default:\ 21 :copyright=/etc/COPYRIGHT:\ 22 :welcome=/etc/motd:\ 23 :setenv=MAIL=/var/mail/$,BLOCKSIZE=K,FTP_PASSIVE_MODE=YES:\ 24 :path=/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/X11R6/bin ~/bin:\ 25 :nologin=/var/run/nologin:\ 26 :cputime=unlimited:\ 27 :datasize=unlimited:\ 28 :stacksize=unlimited:\ 29 :memorylocked=unlimited:\ 30 :memoryuse=unlimited:\ 31 :filesize=unlimited:\ 32 :coredumpsize=unlimited:\ 33 :openfiles=unlimited:\ 34 :maxproc=unlimited:\ 35 :priority=0:\ 36 :ignoretime@:\ 37 :umask=022: 38 39 40# 41# A collection of common class names - forward them all to 'default' 42# (login would normally do this anyway, but having a class name 43# here suppresses the diagnostic) 44# 45standard:\ 46 :tc=default: 47xuser:\ 48 :tc=default: 49staff:\ 50 :tc=default: 51daemon:\ 52 :tc=default: 53news:\ 54 :tc=default: 55dialer:\ 56 :tc=default: 57 58# 59# Root can always login 60# 61# N.B. login_getpwclass(3) will use this entry for the root account, 62# in preference to 'default'. 63root:\ 64 :ignorenologin:\ 65 :tc=default: 66 67# 68# Russian Users Accounts. Setup proper environment variables. 69# 70russian:Russian Users Accounts:\ 71 :charset=KOI8-R:\ 72 :lang=ru_RU.KOI8-R:\ 73 :tc=default: 74 75 76###################################################################### 77###################################################################### 78## 79## Example entries 80## 81###################################################################### 82###################################################################### 83 84## Example defaults 85## These settings are used by login(1) by default for classless users 86## Note that entries like "cputime" set both "cputime-cur" and "cputime-max" 87# 88#default:\ 89# :cputime=infinity:\ 90# :datasize-cur=22M:\ 91# :stacksize-cur=8M:\ 92# :memorylocked-cur=10M:\ 93# :memoryuse-cur=30M:\ 94# :filesize=infinity:\ 95# :coredumpsize=infinity:\ 96# :maxproc-cur=64:\ 97# :openfiles-cur=64:\ 98# :priority=0:\ 99# :requirehome@:\ 100# :umask=022:\ 101# :tc=auth-defaults: 102# 103# 104## 105## standard - standard user defaults 106## 107#standard:\ 108# :copyright=/etc/COPYRIGHT:\ 109# :welcome=/etc/motd:\ 110# :setenv=MAIL=/var/mail/$,BLOCKSIZE=K:\ 111# :path=~/bin /bin /usr/bin /usr/local/bin:\ 112# :manpath=/usr/share/man /usr/local/man:\ 113# :nologin=/var/run/nologin:\ 114# :cputime=1h30m:\ 115# :datasize=8M:\ 116# :stacksize=2M:\ 117# :memorylocked=4M:\ 118# :memoryuse=8M:\ 119# :filesize=8M:\ 120# :coredumpsize=8M:\ 121# :openfiles=24:\ 122# :maxproc=32:\ 123# :priority=0:\ 124# :requirehome:\ 125# :passwordtime=90d:\ 126# :umask=002:\ 127# :ignoretime@:\ 128# :tc=default: 129# 130# 131## 132## users of X (needs more resources!) 133## 134#xuser:\ 135# :manpath=/usr/share/man /usr/X11R6/man /usr/local/man:\ 136# :cputime=4h:\ 137# :datasize=12M:\ 138# :stacksize=4M:\ 139# :filesize=8M:\ 140# :memoryuse=16M:\ 141# :openfiles=32:\ 142# :maxproc=48:\ 143# :tc=standard: 144# 145# 146## 147## Staff users - few restrictions and allow login anytime 148## 149#staff:\ 150# :ignorenologin:\ 151# :ignoretime:\ 152# :requirehome@:\ 153# :accounted@:\ 154# :path=~/bin /bin /sbin /usr/bin /usr/sbin /usr/local/bin /usr/local/sbin:\ 155# :umask=022:\ 156# :tc=standard: 157# 158# 159## 160## root - fallback for root logins 161## 162#root:\ 163# :path=~/bin /bin /sbin /usr/bin /usr/sbin /usr/local/bin /usr/local/sbin:\ 164# :cputime=infinity:\ 165# :datasize=infinity:\ 166# :stacksize=infinity:\ 167# :memorylocked=infinity:\ 168# :memoryuse=infinity:\ 169# :filesize=infinity:\ 170# :coredumpsize=infinity:\ 171# :openfiles=infinity:\ 172# :maxproc=infinity:\ 173# :memoryuse-cur=32M:\ 174# :maxproc-cur=64:\ 175# :openfiles-cur=1024:\ 176# :priority=0:\ 177# :requirehome@:\ 178# :umask=022:\ 179# :tc=auth-root-defaults: 180# 181# 182## 183## Settings used by /etc/rc 184## 185#daemon:\ 186# :coredumpsize@:\ 187# :coredumpsize-cur=0:\ 188# :datasize=infinity:\ 189# :datasize-cur@:\ 190# :maxproc=512:\ 191# :maxproc-cur@:\ 192# :memoryuse-cur=64M:\ 193# :memorylocked-cur=64M:\ 194# :openfiles=1024:\ 195# :openfiles-cur@:\ 196# :stacksize=16M:\ 197# :stacksize-cur@:\ 198# :tc=default: 199# 200# 201## 202## Settings used by news subsystem 203## 204#news:\ 205# :path=/usr/local/news/bin /bin /sbin /usr/bin /usr/sbin /usr/local/bin /usr/local/sbin:\ 206# :cputime=infinity:\ 207# :filesize=128M:\ 208# :datasize-cur=64M:\ 209# :stacksize-cur=32M:\ 210# :coredumpsize-cur=0:\ 211# :maxmemorysize-cur=128M:\ 212# :memorylocked=32M:\ 213# :maxproc=128:\ 214# :openfiles=256:\ 215# :tc=default: 216# 217# 218## 219## The dialer class should be used for a dialup PPP/SLIP accounts 220## Welcome messages/news suppressed 221## 222#dialer:\ 223# :hushlogin:\ 224# :requirehome@:\ 225# :cputime=unlimited:\ 226# :filesize=2M:\ 227# :datasize=2M:\ 228# :stacksize=4M:\ 229# :coredumpsize=0:\ 230# :memoryuse=4M:\ 231# :memorylocked=1M:\ 232# :maxproc=16:\ 233# :openfiles=32:\ 234# :tc=standard: 235# 236# 237## 238## Site full-time 24/7 PPP/SLIP connections 239## - no time accounting, restricted to access via dialin lines 240## 241#site:\ 242# :ignoretime:\ 243# :passwordtime@:\ 244# :refreshtime@:\ 245# :refreshperiod@:\ 246# :sessionlimit@:\ 247# :autodelete@:\ 248# :expireperiod@:\ 249# :graceexpire@:\ 250# :gracetime@:\ 251# :warnexpire@:\ 252# :warnpassword@:\ 253# :idletime@:\ 254# :sessiontime@:\ 255# :daytime@:\ 256# :weektime@:\ 257# :monthtime@:\ 258# :warntime@:\ 259# :accounted@:\ 260# :tc=dialer:\ 261# :tc=staff: 262# 263# 264## 265## Example standard accounting entries for subscriber levels 266## 267# 268#subscriber|Subscribers:\ 269# :accounted:\ 270# :refreshtime=180d:\ 271# :refreshperiod@:\ 272# :sessionlimit@:\ 273# :autodelete=30d:\ 274# :expireperiod=180d:\ 275# :graceexpire=7d:\ 276# :gracetime=10m:\ 277# :warnexpire=7d:\ 278# :warnpassword=7d:\ 279# :idletime=30m:\ 280# :sessiontime=4h:\ 281# :daytime=6h:\ 282# :weektime=40h:\ 283# :monthtime=120h:\ 284# :warntime=4h:\ 285# :tc=standard: 286# 287# 288## 289## Subscriber accounts. These accounts have their login times 290## accounted and have access limits applied. 291## 292#subppp|PPP Subscriber Accounts:\ 293# :tc=dialer:\ 294# :tc=subscriber: 295# 296# 297#subslip|SLIP Subscriber Accounts:\ 298# :tc=dialer:\ 299# :tc=subscriber: 300# 301# 302#subshell:Shell Subscriber Accounts:\ 303# :tc=subscriber: 304# 305