*** UNIX MANUAL PAGE BROWSER ***

ttys(4) Kernel Interfaces Manual ttys(4) NAME ttys - Terminal control database file (Enhanced Security) DESCRIPTION Notes The secure terminal database file used on an nontrusted system is /etc/securettys and is documented in the securettys(4) reference page. By default, ttys information is now in database format as converted by convauth. The databases are not converted in an update installation. The system supports a single terminal control database that contains entries for each terminal that can be used for logging in. Authentica- tion programs use information in the terminal control database to de- termine if log in from the terminal is permitted. Additional fields are maintained for informational purposes. The format of the terminal control database file is identical to other system authentication database files. For more information on the file format, see the authcap(4) reference page. The file consists of key- word field identifiers and values for those fields. The following key- word identifiers are supported: This field defines the terminal device name for the entry. The system expects that terminal devices are in the /dev directory and therefore this prefix should not be specified. If the terminal entry describes the /dev/tty1 device, the t_devname field should contain tty1. This field contains the user ID of the last user who successfully logged in using the terminal device. This field is a time_t value that records the last successful login time to the termi- nal device. This field contains the user ID of the last user who un- successfully attempted to log in using the terminal device. This field is a time_t value that records the last unsuccessful login time to the terminal device. This field contains the user ID of the user who suc- cessfully logged in before the user identified in the t_uid field. This represents the UID of the previous login session. This field is a time_t value that contains the system time of last logout associated with this terminal device. This value marks the end of the previous lo- gin session associated with the user identified by t_prevuid. This field records the number of consecutive unsuccessful login attempts to the terminal device. This field specifies the maximum number of con- secutive unsuccessful login attempts permitted using the terminal be- fore the terminal is locked. Once the terminal is locked, it must be unlocked by an authorized administrator. This field is a time_t value that identifies the login delay enforced by authentication programs be- tween unsuccessful login attempts. This field is designed to slow the rate at which penetration attempts on a terminal device can occur. This field indicates whether the terminal device has been administra- tively locked. This field is manipulated by authorized administrators only. This field specifies the time interval in seconds after t_unsuc- time to wait before ignoring t_failures. Zero means never ignore t_failures. This field specifies the login time-out value in seconds. If a login attempt is initiated by entering a user name at the login prompt but successful authentication is not completed within the time- out interval specified, the login attempt is aborted. This field indi- cates that the entry is an X window display managed by rather than a terminal device. EXAMPLES The following example shows a typical terminal control database entry: console:t_devname=console: :t_uid=reese:t_logtime#675430072: :t_unsucuid=reese:t_unsuctime#673610809: :t_prevuid=root:t_prevtime#671376915: :chkent: This entry is for the system console device, /dev/console. The most re- cent successful login session was for the user reese. The most recent unsuccessful login attempt was also by user reese. Before the most re- cent successful login session, the root account was used to log in to the console. The entry records the system time for the current suc- cessful login, the end of the previous successful login session, and the time of the most recent unsuccessful login attempt. FILES Specifies the pathname of the file. RELATED INFORMATION Commands: login(1) Functions: getprtcent(3) Files: authcap(4), default(4), securettys(4) delim off ttys(4)