seclib_secterm(3C) seclib_secterm(3C)
NAME
seclibsecterm - the root user may only log in at a secure location
SYNOPSIS
cc ... -lseclib
#include <seclib.h>
enum seclibreturnval
seclibterm(enum sectermoptions options,
struct logincontext *context);
DESCRIPTION
The Secure Terminal Group is responsible for checking that the root
user is only logging in (or using su) at a secure location. It will:
- SECTCONSOLE
- SECTSECURETTY (CSP feature) If the context is for the root or sso
("System Security Officer") user, this function will check to
ensure that the user is logging in on a terminal that is in the
/etc/securetty file or the terminal that is specified by the CON-
SOLE flag in /etc/default/login.
ARGUMENTS
secentryoptions
A bitmask that directs the function to enable particular
features. The complete list of values in the bitmask may be found
in the seclib.h header.
logincontext
A value as returned by secliblogincontext(). The structure
referenced by this pointer contains all of the session informa-
tion required to authenticate a user via the security library.
RETURN VALUE
The functions return the seclibreturnval enumeration. The functions
will return:
SECROK
The function completed processing without encountering a system
error.
NOTE: the function will return SECROK even if it sets
context->reason to a failure value.
SECRCALLFAILED
The function call failed. This is usually because a system call
failed (such as a malloc() failing when a brk() call returned
with an error).
Page 1 Reliant UNIX 5.44 Printed 11/98
seclib_secterm(3C) seclib_secterm(3C)
SECRBADOPTION
The function was called with an invalid argument.
SEE ALSO
seclib(3C), secliblogincontext(3C), seclibmisc(3C),
seclibpassentry(3C), seclibpassqual(3C), seclibpasswd(3C),
seclibruserok(3C), seclibtwindows(3C).
Page 2 Reliant UNIX 5.44 Printed 11/98