login.conf revision 61184
1# login.conf - login class capabilities database. 2# 3# Remember to rebuild the database after each change to this file: 4# 5# cap_mkdb /etc/login.conf 6# 7# This file controls resource limits, accounting limits and 8# default user environment settings. 9# 10# $FreeBSD: head/etc/login.conf 61184 2000-06-02 20:51:05Z alfred $ 11# 12 13# Default settings effectively disable resource limits, see the 14# examples below for a starting point to enable them. 15 16# defaults 17# These settings are used by login(1) by default for classless users 18# Note that entries like "cputime" set both "cputime-cur" and "cputime-max" 19 20default:\ 21 :copyright=/etc/COPYRIGHT:\ 22 :welcome=/etc/motd:\ 23 :setenv=MAIL=/var/mail/$,BLOCKSIZE=K,FTP_PASSIVE_MODE=YES:\ 24 :path=/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/X11R6/bin ~/bin:\ 25 :nologin=/var/run/nologin:\ 26 :cputime=unlimited:\ 27 :datasize=unlimited:\ 28 :stacksize=unlimited:\ 29 :memorylocked=unlimited:\ 30 :memoryuse=unlimited:\ 31 :filesize=unlimited:\ 32 :coredumpsize=unlimited:\ 33 :openfiles=unlimited:\ 34 :maxproc=unlimited:\ 35 :sbsize=unlimited:\ 36 :priority=0:\ 37 :ignoretime@:\ 38 :umask=022: 39 40 41# 42# A collection of common class names - forward them all to 'default' 43# (login would normally do this anyway, but having a class name 44# here suppresses the diagnostic) 45# 46standard:\ 47 :tc=default: 48xuser:\ 49 :tc=default: 50staff:\ 51 :tc=default: 52daemon:\ 53 :tc=default: 54news:\ 55 :tc=default: 56dialer:\ 57 :tc=default: 58 59# 60# Root can always login 61# 62# N.B. login_getpwclass(3) will use this entry for the root account, 63# in preference to 'default'. 64root:\ 65 :ignorenologin:\ 66 :tc=default: 67 68# 69# Russian Users Accounts. Setup proper environment variables. 70# 71russian:Russian Users Accounts:\ 72 :charset=KOI8-R:\ 73 :lang=ru_RU.KOI8-R:\ 74 :tc=default: 75 76 77###################################################################### 78###################################################################### 79## 80## Example entries 81## 82###################################################################### 83###################################################################### 84 85## Example defaults 86## These settings are used by login(1) by default for classless users 87## Note that entries like "cputime" set both "cputime-cur" and "cputime-max" 88# 89#default:\ 90# :cputime=infinity:\ 91# :datasize-cur=22M:\ 92# :stacksize-cur=8M:\ 93# :memorylocked-cur=10M:\ 94# :memoryuse-cur=30M:\ 95# :filesize=infinity:\ 96# :coredumpsize=infinity:\ 97# :maxproc-cur=64:\ 98# :openfiles-cur=64:\ 99# :priority=0:\ 100# :requirehome@:\ 101# :umask=022:\ 102# :tc=auth-defaults: 103# 104# 105## 106## standard - standard user defaults 107## 108#standard:\ 109# :copyright=/etc/COPYRIGHT:\ 110# :welcome=/etc/motd:\ 111# :setenv=MAIL=/var/mail/$,BLOCKSIZE=K:\ 112# :path=~/bin /bin /usr/bin /usr/local/bin:\ 113# :manpath=/usr/share/man /usr/local/man:\ 114# :nologin=/var/run/nologin:\ 115# :cputime=1h30m:\ 116# :datasize=8M:\ 117# :stacksize=2M:\ 118# :memorylocked=4M:\ 119# :memoryuse=8M:\ 120# :filesize=8M:\ 121# :coredumpsize=8M:\ 122# :openfiles=24:\ 123# :maxproc=32:\ 124# :priority=0:\ 125# :requirehome:\ 126# :passwordtime=90d:\ 127# :umask=002:\ 128# :ignoretime@:\ 129# :tc=default: 130# 131# 132## 133## users of X (needs more resources!) 134## 135#xuser:\ 136# :manpath=/usr/share/man /usr/X11R6/man /usr/local/man:\ 137# :cputime=4h:\ 138# :datasize=12M:\ 139# :stacksize=4M:\ 140# :filesize=8M:\ 141# :memoryuse=16M:\ 142# :openfiles=32:\ 143# :maxproc=48:\ 144# :tc=standard: 145# 146# 147## 148## Staff users - few restrictions and allow login anytime 149## 150#staff:\ 151# :ignorenologin:\ 152# :ignoretime:\ 153# :requirehome@:\ 154# :accounted@:\ 155# :path=~/bin /bin /sbin /usr/bin /usr/sbin /usr/local/bin /usr/local/sbin:\ 156# :umask=022:\ 157# :tc=standard: 158# 159# 160## 161## root - fallback for root logins 162## 163#root:\ 164# :path=~/bin /bin /sbin /usr/bin /usr/sbin /usr/local/bin /usr/local/sbin:\ 165# :cputime=infinity:\ 166# :datasize=infinity:\ 167# :stacksize=infinity:\ 168# :memorylocked=infinity:\ 169# :memoryuse=infinity:\ 170# :filesize=infinity:\ 171# :coredumpsize=infinity:\ 172# :openfiles=infinity:\ 173# :maxproc=infinity:\ 174# :memoryuse-cur=32M:\ 175# :maxproc-cur=64:\ 176# :openfiles-cur=1024:\ 177# :priority=0:\ 178# :requirehome@:\ 179# :umask=022:\ 180# :tc=auth-root-defaults: 181# 182# 183## 184## Settings used by /etc/rc 185## 186#daemon:\ 187# :coredumpsize@:\ 188# :coredumpsize-cur=0:\ 189# :datasize=infinity:\ 190# :datasize-cur@:\ 191# :maxproc=512:\ 192# :maxproc-cur@:\ 193# :memoryuse-cur=64M:\ 194# :memorylocked-cur=64M:\ 195# :openfiles=1024:\ 196# :openfiles-cur@:\ 197# :stacksize=16M:\ 198# :stacksize-cur@:\ 199# :tc=default: 200# 201# 202## 203## Settings used by news subsystem 204## 205#news:\ 206# :path=/usr/local/news/bin /bin /sbin /usr/bin /usr/sbin /usr/local/bin /usr/local/sbin:\ 207# :cputime=infinity:\ 208# :filesize=128M:\ 209# :datasize-cur=64M:\ 210# :stacksize-cur=32M:\ 211# :coredumpsize-cur=0:\ 212# :maxmemorysize-cur=128M:\ 213# :memorylocked=32M:\ 214# :maxproc=128:\ 215# :openfiles=256:\ 216# :tc=default: 217# 218# 219## 220## The dialer class should be used for a dialup PPP/SLIP accounts 221## Welcome messages/news suppressed 222## 223#dialer:\ 224# :hushlogin:\ 225# :requirehome@:\ 226# :cputime=unlimited:\ 227# :filesize=2M:\ 228# :datasize=2M:\ 229# :stacksize=4M:\ 230# :coredumpsize=0:\ 231# :memoryuse=4M:\ 232# :memorylocked=1M:\ 233# :maxproc=16:\ 234# :openfiles=32:\ 235# :tc=standard: 236# 237# 238## 239## Site full-time 24/7 PPP/SLIP connections 240## - no time accounting, restricted to access via dialin lines 241## 242#site:\ 243# :ignoretime:\ 244# :passwordtime@:\ 245# :refreshtime@:\ 246# :refreshperiod@:\ 247# :sessionlimit@:\ 248# :autodelete@:\ 249# :expireperiod@:\ 250# :graceexpire@:\ 251# :gracetime@:\ 252# :warnexpire@:\ 253# :warnpassword@:\ 254# :idletime@:\ 255# :sessiontime@:\ 256# :daytime@:\ 257# :weektime@:\ 258# :monthtime@:\ 259# :warntime@:\ 260# :accounted@:\ 261# :tc=dialer:\ 262# :tc=staff: 263# 264# 265## 266## Example standard accounting entries for subscriber levels 267## 268# 269#subscriber|Subscribers:\ 270# :accounted:\ 271# :refreshtime=180d:\ 272# :refreshperiod@:\ 273# :sessionlimit@:\ 274# :autodelete=30d:\ 275# :expireperiod=180d:\ 276# :graceexpire=7d:\ 277# :gracetime=10m:\ 278# :warnexpire=7d:\ 279# :warnpassword=7d:\ 280# :idletime=30m:\ 281# :sessiontime=4h:\ 282# :daytime=6h:\ 283# :weektime=40h:\ 284# :monthtime=120h:\ 285# :warntime=4h:\ 286# :tc=standard: 287# 288# 289## 290## Subscriber accounts. These accounts have their login times 291## accounted and have access limits applied. 292## 293#subppp|PPP Subscriber Accounts:\ 294# :tc=dialer:\ 295# :tc=subscriber: 296# 297# 298#subslip|SLIP Subscriber Accounts:\ 299# :tc=dialer:\ 300# :tc=subscriber: 301# 302# 303#subshell:Shell Subscriber Accounts:\ 304# :tc=subscriber: 305# 306