Museum

Home

Lab Overview

Retrotechnology Articles

⇒ Online Manual

Media Vault

Software Library

Restoration Projects

Artifacts Sought

Related Articles

passwd(4)

passwd(1)

StartupShell(8)





auxstartuprc(4)                                   auxstartuprc(4)





NAME
     auxstartuprc - control file that helps password-protect and
     otherwise secure A/UX Startup

DESCRIPTION
     auxstartuprc helps secure the A/UX Startup application. If
     the auxstartuprc file exists (even if it is empty), and if
     password checking in A/UX Startup is enabled, then you must
     enter a qualified login account name and password before you
     can do anything but start A/UX inside the A/UX Startup
     application.

     A/UX Startup also presents a login dialog when the startup
     sequence is successfully canceled. If you do not supply a
     properly authorized name and password, according to the
     information in /etc/auxstartuprc and /etc/passwd, you can
     restart the boot process, you can try to log in again, or
     you can shut the system off.  After a certain number of
     failed login attempts, the system normally shuts itself off.

     If you enter an authorized name and password, you gain all
     the privileges of the root account when using the commands
     in the A/UX Startup menus, as well as when using command
     lines in the StartupShell portion of the A/UX Startup
     application.  For more information about the A/UX Startup
     application, see StartupShell(8).

     To be able to change the startup settings that had been
     stored previously for the location of the root file system,
     the A/UX kernel, and so forth, you first must gain
     comprehensive access to A/UX Startup application as
     moderated by the login dialog.

     If its password-checking feature has been left off, then
     A/UX Startup does not present a login dialog box before any
     of its functions can be used. This gives anyone root
     privileges whenever A/UX is not yet running, but A/UX
     Startup is launched.  (The A/UX Startup application is
     launched from the Macintosh Operating System, which
     typically runs just after power has been applied to the
     system, until the time that A/UX runs in its place.)

     When empty, /etc/auxstartuprc determines that any account
     can be used to gain access to A/UX Startup.  Other settings
     are established as well:  A maximum of five login attempts
     are permitted before the system automatically shuts itself
     off; and details of all login failures are recorded in
     /etc/auxstartup.log.

     The auxstartuprc file can contain any number of comment
     lines that begin with a number sign (#).  The first line
     that is not a comment line is expected to contain seven



March 1993                                                      1








auxstartuprc(4)                                   auxstartuprc(4)





     colon-separated fields in this format:

        login-name:user-id:group-id:max-attempts:hold-off-time:future-use:logfile

     Each of the fields can assume various acceptable values, as
     described in the following list:

     login-name
          Specifies the name of an account that can be used to
          fully exploit A/UX Startup.

     user-id
          Specifies the user ID of an account that can be used to
          fully exploit A/UX Startup.

     group-id
          Specifies the group ID of accounts that can be used to
          fully exploit A/UX Startup. Note that this ID must
          indicate the primary group for the account as
          established in /etc/passwd (not as established in
          /etc/group).

     max-attempts
          Specifies the maximum number of failed login attempts
          that are permitted before the system shuts itself off
          for a period of time.

     hold-off-time
          Specifies the number of seconds that the system stays
          off when the number of failed login attempts exceeds
          the value of max-attempts.

     future-use
          This field is for future use.

     logfile
          Specifies the file in which information about failed
          login attempts is written.

NOTES
     An empty auxstartuprc file establishes various security
     policies for A/UX Startup as well as restricts access to the
     MacPartition volume while A/UX is running.  If left empty,
     this file will be automatically removed by A/UX Startup when
     password checking is disabled through its ``General'' item
     in the Preferences menu. If password checking is switched
     back on, then the empty file is re-created.

     An auxstartuprc file that is not empty is never removed by
     A/UX Startup, even if you switch password checking off. In
     that case, the file continues to specify certain settings,
     but they are not honored by A/UX Startup.



2                                                      March 1993








auxstartuprc(4)                                   auxstartuprc(4)





     Whether empty or not, and whether or not A/UX Startup has
     password checking enabled, the existence of
     /etc/auxstartuprc causes the Finder in A/UX to suppress the
     display of a desktop icon for the Macintosh volume residing
     on the root disk device, preventing access to its files
     (such as A/UX Startup) and folders. This is true for normal
     users, but not for users who have started their A/UX work
     session by logging in as root.

FILES
     /etc/auxstartup.log
          Default file containing details of all login attempts
          that failed
     /etc/auxstartuprc
          File that selects which /etc/passwd accounts can be
          used to fully exploit A/UX Startup
     /etc/passwd
          File that establishes user accounts
SEE ALSO
     passwd(4)

     passwd(1) in A/UX Command Reference

     StartupShell(8) in A/UX System Administrator's Reference































March 1993                                                      3

Typewritten Software • bear@typewritten.org • Edmonds, WA 98026