How can I limit the login times in linux for certain users?
Solution 1:
You need to configure one of the PAM subsystem's modules, called "pam_time". It's pretty simple to do by hand, just by editing the text file that controls the module's behavior. I don't know about webmin, specifically—there may be webmin interface option for this, already.
In short, you'll edit the file '/etc/security/time.conf' and add some configuration options that describe what user you want to restrict, and exactly when you want him to be restricted. Since this is a security-related system file, you'll need root privileges in order to make the edit.
Here's an example of the text you'd add to that file, on a set of new lines (quoted directly from the example in the tutorial I link to, below):
login ; * ; !bobby ; MoTuWeThFr0800-2000
login ; * ; !root ; !Al0000-2400
http ; * ; !bobby ; MoTuWeThFr0800-2000
http ; * ; !root; !Al0000-2400
"These rules restrict user bobby from logging on between the hours of 0800 and 2000, and they also restrict Internet access during these hours. Root would be able to logon at any time and browse the Internet during all times as well."
The complete pam_time documentation is here, and it explains the rest of the possible config options and controls:
- http://www.linux-pam.org/Linux-PAM-html/sag-pam_time.html
and there is an easy-to-follow tutorial, here, with step by step instructions, where I found the example I quoted, above:
- http://blogs.techrepublic.com/security/?p=319