wok-next diff enlightenment-pam/stuff/etc/enlightenment/sysactions.conf @ rev 18874
Up node (0.10.41)
| author | Pascal Bellard <pascal.bellard@slitaz.org> |
|---|---|
| date | Thu Feb 04 16:21:24 2016 +0100 (2016-02-04) |
| parents | |
| children |
line diff
1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000 1.2 +++ b/enlightenment-pam/stuff/etc/enlightenment/sysactions.conf Thu Feb 04 16:21:24 2016 +0100 1.3 @@ -0,0 +1,73 @@ 1.4 +# ENLIGHTENMENT SYSTEM ACTIONS CONFIGURATION 1.5 +# 1.6 +# This is a system configuration for allowing or denying certain users or 1.7 +# groups to be able to do certain actions that involve system restricted 1.8 +# actions such as halt, reboot, suspend, hibernate etc. 1.9 +# 1.10 +# This file is read in order from top to bottom - the first rule to MATCH 1.11 +# will be used for a user or a group, and nothing after that is read. 1.12 +# 1.13 +# You must put all the ACTION definitons BEFORE user and group rule matches. 1.14 +# Any action definitons after a rule match has been found will be ignored. 1.15 +# This allows actions to be re-defined for different user groups, so matches 1.16 +# so the command for an action can change for matches to the rules later on. 1.17 +# 1.18 +# Any user or group NOT matched by an allow or a deny will be ALLOWED to 1.19 +# perform the action by default (system administrators should be aware of 1.20 +# this and implement whatever policies they see fit). Generally speaking 1.21 +# a user of a workstation, desktop or laptop is intended to have such abilities 1.22 +# to perform these actions, thus the default of allow. For multi-user systems 1.23 +# the system administrator is considerd capable enough to restrict what they 1.24 +# see they need to. 1.25 +# 1.26 +# A WARNING to admins: do NOT allow access for users to this system remotely 1.27 +# UNLESS you fully trust them or you have locked down permissions to halt/reboot 1.28 +# suspend etc. here first. You have been warned. 1.29 +# 1.30 +# FORMAT: 1.31 +# 1.32 +# action: halt /sbin/shutdown -h now 1.33 +# action: reboot /sbin/shutdown -r now 1.34 +# action: suspend /etc/acpi/sleep.sh force 1.35 +# action: hibernate /etc/acpi/hibernate.sh force 1.36 +# 1.37 +# user: username allow: halt reboot suspend hibernate 1.38 +# group: groupname deny: * 1.39 +# group: * deny: * 1.40 +# user: * allow: suspend 1.41 +# user: billy allow: halt reboot 1.42 +# group: staff deny: halt suspend hibernate 1.43 +# 1.44 +# etc. 1.45 +# 1.46 +# user and group name can use glob matches (* == all for example) like the 1.47 +# shell. as can action names allowed or denied. 1.48 + 1.49 +action: halt poweroff 1.50 +action: reboot reboot 1.51 +action: suspend /usr/sbin/pm-suspend 1.52 +action: hibernate /usr/sbin/pm-hibernate 1.53 + 1.54 +# root is allowed to do anything - but it needs to be here explicitly anyway 1.55 +user: root allow: * 1.56 +# members of operator, staff and admin groups should be able to do all 1.57 +group: operator allow: * 1.58 +group: staff allow: * 1.59 +group: admin allow: * 1.60 +group: sys allow: * 1.61 +# common "user" groups for "console users" on desktops/laptops 1.62 +group: dialout allow: * 1.63 +group: disk allow: * 1.64 +group: adm allow: * 1.65 +group: cdrom allow: * 1.66 +group: floppy allow: * 1.67 +group: audio allow: * 1.68 +group: dip allow: * 1.69 +group: plugdev allow: * 1.70 +# put in a list of other users and groups here that are allowed or denied etc. 1.71 +# e.g. 1.72 +# user: myuser allow: * 1.73 +# user: another allow: suspend hibernate 1.74 +# deny everyone else by default 1.75 +user: * deny: * 1.76 +user: tux allow: *