HP-UX Reference (11i v2 04/09) - 4 File Formats (vol 8)
s
security(4) security(4)
SU_ROOT_GROUP=
group_name
The root group name is set to the specified symbolic group name. The
su command
enforces the restriction that a non-superuser must be a member of the specified root
group to be allowed to
su to root. This does not alter password checking.
Default value: If this parameter is not defined or if it is commented out, there is no default
value. In this case, a non-superuser is allowed to
su to root without being bound by root group
restrictions.
UMASK This parameter controls umask(2) of all sessions initiated via pam_unix (5) and/or
pam_hpsec (5). It accepts values from 0 to 0777 as an unsigned octal integer (leading zero can
be omitted).
UMASK=default_umask
The umask is set or restricted further with the value of default_umask. For trusted sys-
tems, the
umask is also restricted so as not to exceed
SEC_DEFAULT_MODE
defined in
/usr/include/hpsecurity.h
.
Default value:
UMASK=0
Notes
Use the functions defined in secdef (3) to read the values of the parameters defined in this file.
AUTHOR
The
security file was developed by HP.
FILES
/etc/default/security
SEE ALSO
login(1), passwd(1), su(1), init(1M), secdef(3), pam_hpsec(5), pam_unix(5).
Section 4−−294 Hewlett-Packard Company − 4 − HP-UX 11i Version 2: September 2004