Which of the following PAM modules allows the system administrator to use an arbitrary file containing a list of user and group names with restrictions on the system resources available to them?
Which of the following PAM modules allows the system administrator to use an arbitrary file containing a list of user and group names with restrictions on the system resources available to them?
The correct answer is 'pam_listfile'. This PAM module allows the system administrator to use an arbitrary file containing a list of user and group names, enabling restrictions based on this file. While 'pam_limits' deals with setting system resource limits, it does not specifically pertain to using an arbitrary file to impose these restrictions.
Correct answer is pam_listfile.
I agree, is pam_listfile
B is correct: The pam_limits PAM module sets limits on the “system resources” that can be obtained in a user-session. Users of uid=0 are affected by this limits, too. https://linux.die.net/man/8/pam_limits But “pam_listfile” is a PAM module which provides a way to deny or allow services based on an arbitrary file. Tip: In this question one administrator uses an arbitrary file in order to limit the users to access the available resources. Consequently is the restriction on resources not on an arbitrary file.
The pam_limits PAM module sets limits on the system resources that can be obtained in a user-session. Users of uid=0 are affected by this limits, too. Correct answer is pam_limits https://linux.die.net/man/8/pam_limits
pam_listfile can allow/deny users defined in a file
pam_limits is the correct answer
The question mentioned `restrictions on the system resources`. I think the answer 'B' is correct.
don't be fooled by "Arbitrary", pam_listfile is to deny/allow services based on a config file
B - pam_limits
pam_listfile
pam_limits is a separate module from pam_listfile, so C is a correct answer: https://lpic2book.github.io/src/lpic2.210.2/#pam_limits
Correct answer is pam_listfile pam_listfile is a PAM module which provides a way to deny or allow services based on an arbitrary file. https://linux.die.net/man/8/pam_listfile
https://linux.die.net/man/8/pam_limits