NetBSD/usr.bin/login/login.1

199 lines
5.4 KiB
Groff
Raw Normal View History

2005-11-08 21:54:15 +03:00
.\" $NetBSD: login.1,v 1.27 2005/11/08 18:54:15 wiz Exp $
.\"
.\" Copyright (c) 1980, 1990, 1993
.\" The Regents of the University of California. All rights reserved.
1993-03-21 12:45:37 +03:00
.\"
.\" Redistribution and use in source and binary forms, with or without
.\" modification, are permitted provided that the following conditions
.\" are met:
.\" 1. Redistributions of source code must retain the above copyright
.\" notice, this list of conditions and the following disclaimer.
.\" 2. Redistributions in binary form must reproduce the above copyright
.\" notice, this list of conditions and the following disclaimer in the
.\" documentation and/or other materials provided with the distribution.
.\" 3. Neither the name of the University nor the names of its contributors
1993-03-21 12:45:37 +03:00
.\" may be used to endorse or promote products derived from this software
.\" without specific prior written permission.
.\"
.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
.\" ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
.\" SUCH DAMAGE.
.\"
1995-09-01 02:50:22 +04:00
.\" @(#)login.1 8.2 (Berkeley) 5/5/94
1993-03-21 12:45:37 +03:00
.\"
.Dd November 1, 2005
1993-03-21 12:45:37 +03:00
.Dt LOGIN 1
.Os
1993-03-21 12:45:37 +03:00
.Sh NAME
.Nm login
.Nd authenticate users and set up their session environment
1993-03-21 12:45:37 +03:00
.Sh SYNOPSIS
1997-10-19 08:18:08 +04:00
.Nm
.Op Fl Ffps
.Op Fl a Ar address
1993-03-21 12:45:37 +03:00
.Op Fl h Ar hostname
.Op Ar user
.Sh DESCRIPTION
The
1997-10-19 08:18:08 +04:00
.Nm
1993-03-21 12:45:37 +03:00
utility logs users (and pseudo-users) into the computer system.
.Pp
If no user is specified, or if a user is specified and authentication
of the user fails,
1997-10-19 08:18:08 +04:00
.Nm
1993-03-21 12:45:37 +03:00
prompts for a user name.
Authentication of users is done via passwords.
If the user can be authenticated via
.Tn S/Key ,
then the
.Tn S/Key
challenge is incorporated in the password prompt.
The user then has the option of entering their Kerberos or normal
password or the
.Tn S/Key
response.
Neither will be echoed.
1993-03-21 12:45:37 +03:00
.Pp
The options are as follows:
.Bl -tag -width Ds
.It Fl a
2004-11-19 21:41:00 +03:00
The
.Fl a
option specifies the address of the host from which the connection was received.
It is used by various daemons such as
2004-11-19 21:41:00 +03:00
.Xr telnetd 8 .
This option may only be used by the super-user.
.It Fl F
The
.Fl F
option acts like the
.Fl f
2005-11-08 21:54:15 +03:00
option, but also indicates to
.Xr login 1
that it should attempt to rewrite an existing kerberos5 credentials cache
(specified by the KRB5CCNAME environment variable) after dropping
permissions to the user logging in.
2005-11-08 20:59:45 +03:00
This flag is not supported under
.Xr pam 8 .
1993-03-21 12:45:37 +03:00
.It Fl f
The
.Fl f
option is used when a user name is specified to indicate that proper
authentication has already been done and that no password need be
requested.
This option may only be used by the super-user or when an already
logged in user is logging in as themselves.
.It Fl h
The
.Fl h
option specifies the host from which the connection was received.
It is used by various daemons such as
2004-11-19 21:41:00 +03:00
.Xr telnetd 8 .
1993-03-21 12:45:37 +03:00
This option may only be used by the super-user.
.It Fl p
By default,
1997-10-19 08:18:08 +04:00
.Nm
1993-03-21 12:45:37 +03:00
discards any previous environment.
The
.Fl p
option disables this behavior.
.It Fl s
Require a secure authentication mechanism like
.Tn Kerberos
or
.Tn S/Key
to be used.
2005-11-08 20:59:45 +03:00
This flag is not supported under
.Xr pam 8 .
1993-03-21 12:45:37 +03:00
.El
.Pp
If a user other than the superuser attempts to login while the file
1993-03-21 12:45:37 +03:00
.Pa /etc/nologin
exists,
1997-10-19 08:18:08 +04:00
.Nm
1994-01-11 05:21:43 +03:00
displays its contents to the user and exits.
1993-03-21 12:45:37 +03:00
This is used by
2004-11-19 21:41:00 +03:00
.Xr shutdown 8
to prevent normal users from logging in when the system is about to go down.
1993-03-21 12:45:37 +03:00
.Pp
Immediately after logging a user in,
1997-10-19 08:18:08 +04:00
.Nm
1993-03-21 12:45:37 +03:00
displays the system copyright notice, the date and time the user last
logged in, the message of the day as well as other information.
If the file
.Dq Pa .hushlogin
exists in the user's home directory, all of these messages are suppressed.
This is to simplify logins for non-human users, such as
.Xr uucp 1 .
1997-10-19 08:18:08 +04:00
.Nm
1993-03-21 12:45:37 +03:00
then records an entry in the
.Xr wtmp 5
and
.Xr utmp 5
files, executes site-specific login commands via the
.Xr ttyaction 3
facility with an action of "login", and executes the user's command
interpreter.
1993-03-21 12:45:37 +03:00
.Pp
.Nm
enters information into the environment (see
1993-03-21 12:45:37 +03:00
.Xr environ 7 )
specifying the user's home directory (HOME), command interpreter (SHELL),
search path (PATH), terminal type (TERM) and user name (both LOGNAME and
USER).
.Pp
The standard shells,
.Xr csh 1
and
.Xr sh 1 ,
do not fork before executing the
1997-10-19 08:18:08 +04:00
.Nm
1993-03-21 12:45:37 +03:00
utility.
.Sh FILES
.Bl -tag -width /var/mail/userXXX -compact
.It Pa /etc/motd
message-of-the-day
.It Pa /etc/nologin
disallows non-superuser logins
1993-03-21 12:45:37 +03:00
.It Pa /var/run/utmp
list of current logins
1995-09-01 02:50:22 +04:00
.It Pa /var/log/lastlog
last login account records
1993-03-21 12:45:37 +03:00
.It Pa /var/log/wtmp
login account records
.It Pa /var/mail/user
system mailboxes
.It Pa \&.hushlogin
makes login quieter
.El
.Sh SEE ALSO
.Xr chpass 1 ,
.Xr passwd 1 ,
.Xr rlogin 1 ,
1994-05-24 10:50:57 +04:00
.Xr skey 1 ,
1993-03-21 12:45:37 +03:00
.Xr getpass 3 ,
1998-04-10 13:31:55 +04:00
.Xr ttyaction 3 ,
2000-01-13 15:43:19 +03:00
.Xr login.conf 5 ,
.Xr passwd.conf 5 ,
1993-03-21 12:45:37 +03:00
.Xr utmp 5 ,
.Xr environ 7 ,
.Xr kerberos 8 ,
.Xr pam 8
1993-03-21 12:45:37 +03:00
.Sh HISTORY
A
1997-10-19 08:18:08 +04:00
.Nm
1993-03-21 12:45:37 +03:00
appeared in
.At v6 .
.Sh TRADEMARKS AND PATENTS
.Tn S/Key
is a trademark of
.Tn Bellcore .