2002-12-05 08:41:41 +00:00
|
|
|
#
|
|
|
|
# For a description of the syntax of this configuration file,
|
|
|
|
# see scripts/kbuild/config-language.txt.
|
|
|
|
#
|
|
|
|
|
|
|
|
menu "Login/Password Management Utilities"
|
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config FEATURE_SHADOWPASSWDS
|
2005-12-20 15:25:25 +00:00
|
|
|
bool "Support for shadow passwords"
|
|
|
|
default n
|
|
|
|
help
|
|
|
|
Build support for shadow password in /etc/shadow. This file is only
|
|
|
|
readable by root and thus the encrypted passwords are no longer
|
|
|
|
publicly readable.
|
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config USE_BB_SHADOW
|
2006-08-03 11:28:36 +00:00
|
|
|
bool " Use busybox shadow password functions"
|
2005-12-20 15:25:25 +00:00
|
|
|
default y
|
2006-10-05 10:17:08 +00:00
|
|
|
depends on USE_BB_PWD_GRP && FEATURE_SHADOWPASSWDS
|
2005-12-20 15:25:25 +00:00
|
|
|
help
|
|
|
|
If you leave this disabled, busybox will use the system's shadow
|
|
|
|
password handling functions. And if you are using the GNU C library
|
|
|
|
(glibc), you will then need to install the /etc/nsswitch.conf
|
|
|
|
configuration file and the required /lib/libnss_* libraries in
|
|
|
|
order for the shadow password functions to work. This generally
|
|
|
|
makes your embedded system quite a bit larger.
|
|
|
|
|
|
|
|
Enabling this option will cause busybox to directly access the
|
|
|
|
system's /etc/shadow file when handling shadow passwords. This
|
|
|
|
makes your system smaller and I will get fewer emails asking about
|
|
|
|
how glibc NSS works). When this option is enabled, you will not be
|
|
|
|
able to use PAM to access shadow passwords from remote LDAP
|
|
|
|
password servers and whatnot.
|
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config USE_BB_PWD_GRP
|
2002-12-05 08:41:41 +00:00
|
|
|
bool "Use internal password and group functions rather than system functions"
|
|
|
|
default n
|
|
|
|
help
|
2003-07-15 07:15:03 +00:00
|
|
|
If you leave this disabled, busybox will use the system's password
|
|
|
|
and group functions. And if you are using the GNU C library
|
|
|
|
(glibc), you will then need to install the /etc/nsswitch.conf
|
|
|
|
configuration file and the required /lib/libnss_* libraries in
|
|
|
|
order for the password and group functions to work. This generally
|
|
|
|
makes your embedded system quite a bit larger.
|
|
|
|
|
|
|
|
Enabling this option will cause busybox to directly access the
|
|
|
|
system's /etc/password, /etc/group files (and your system will be
|
|
|
|
smaller, and I will get fewer emails asking about how glibc NSS
|
|
|
|
works). When this option is enabled, you will not be able to use
|
|
|
|
PAM to access remote LDAP password servers and whatnot. And if you
|
|
|
|
want hostname resolution to work with glibc, you still need the
|
|
|
|
/lib/libnss_* libraries.
|
|
|
|
|
|
|
|
If you enable this option, it will add about 1.5k to busybox.
|
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config ADDGROUP
|
2002-12-05 08:41:41 +00:00
|
|
|
bool "addgroup"
|
|
|
|
default n
|
|
|
|
help
|
2003-07-14 19:37:08 +00:00
|
|
|
Utility for creating a new group account.
|
2002-12-05 08:41:41 +00:00
|
|
|
|
2007-04-05 13:16:39 +00:00
|
|
|
config FEATURE_ADDUSER_TO_GROUP
|
|
|
|
bool "Support for adding users to groups"
|
|
|
|
default n
|
|
|
|
depends on ADDGROUP
|
|
|
|
help
|
|
|
|
If called with two non-option arguments,
|
|
|
|
addgroup will add an existing user to an
|
|
|
|
existing group.
|
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config DELGROUP
|
2002-12-05 08:41:41 +00:00
|
|
|
bool "delgroup"
|
|
|
|
default n
|
|
|
|
help
|
2003-07-14 19:37:08 +00:00
|
|
|
Utility for deleting a group account.
|
2002-12-05 08:41:41 +00:00
|
|
|
|
2007-04-15 08:43:23 +00:00
|
|
|
config FEATURE_DEL_USER_FROM_GROUP
|
|
|
|
bool "Support for removing users from groups."
|
|
|
|
default n
|
|
|
|
depends on DELGROUP
|
|
|
|
help
|
2007-05-30 00:29:55 +00:00
|
|
|
If called with two non-option arguments, deluser
|
2007-04-15 08:43:23 +00:00
|
|
|
or delgroup will remove an user from a specified group.
|
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config ADDUSER
|
2002-12-05 08:41:41 +00:00
|
|
|
bool "adduser"
|
|
|
|
default n
|
|
|
|
help
|
2003-07-14 19:37:08 +00:00
|
|
|
Utility for creating a new user account.
|
2002-12-05 08:41:41 +00:00
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config DELUSER
|
2002-12-05 08:41:41 +00:00
|
|
|
bool "deluser"
|
|
|
|
default n
|
|
|
|
help
|
2003-07-14 19:37:08 +00:00
|
|
|
Utility for deleting a user account.
|
2002-12-05 08:41:41 +00:00
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config GETTY
|
2002-12-05 08:41:41 +00:00
|
|
|
bool "getty"
|
|
|
|
default n
|
2006-10-05 10:17:08 +00:00
|
|
|
select FEATURE_SYSLOG
|
2002-12-05 08:41:41 +00:00
|
|
|
help
|
2003-10-22 09:58:56 +00:00
|
|
|
getty lets you log in on a tty, it is normally invoked by init.
|
2002-12-05 08:41:41 +00:00
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config FEATURE_UTMP
|
2006-04-13 23:22:16 +00:00
|
|
|
bool "Support utmp file"
|
2006-10-05 10:17:08 +00:00
|
|
|
depends on GETTY || LOGIN || SU || WHO
|
2004-07-30 17:24:47 +00:00
|
|
|
default n
|
|
|
|
help
|
2005-07-01 01:04:32 +00:00
|
|
|
The file /var/run/utmp is used to track who is currently logged in.
|
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config FEATURE_WTMP
|
2006-04-13 23:22:16 +00:00
|
|
|
bool "Support wtmp file"
|
2006-10-05 10:17:08 +00:00
|
|
|
depends on GETTY || LOGIN || SU || LAST
|
2005-07-01 01:04:32 +00:00
|
|
|
default n
|
2006-10-05 10:17:08 +00:00
|
|
|
select FEATURE_UTMP
|
2005-07-01 01:04:32 +00:00
|
|
|
help
|
2006-01-25 00:08:53 +00:00
|
|
|
The file /var/run/wtmp is used to track when user's have logged into
|
2005-07-01 01:04:32 +00:00
|
|
|
and logged out of the system.
|
2004-07-30 17:24:47 +00:00
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config LOGIN
|
2002-12-05 08:41:41 +00:00
|
|
|
bool "login"
|
|
|
|
default n
|
2006-10-05 10:17:08 +00:00
|
|
|
select FEATURE_SUID
|
|
|
|
select FEATURE_SYSLOG
|
2002-12-05 08:41:41 +00:00
|
|
|
help
|
2003-10-22 09:58:56 +00:00
|
|
|
login is used when signing onto a system.
|
2002-12-05 08:41:41 +00:00
|
|
|
|
2004-08-26 23:13:00 +00:00
|
|
|
Note that Busybox binary must be setuid root for this applet to
|
|
|
|
work properly.
|
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config LOGIN_SCRIPTS
|
2006-09-08 17:22:45 +00:00
|
|
|
bool "Support for login scripts"
|
2006-10-05 10:17:08 +00:00
|
|
|
depends on LOGIN
|
2006-09-08 17:22:45 +00:00
|
|
|
default n
|
|
|
|
help
|
|
|
|
Enable this if you want login to execute $LOGIN_PRE_SUID_SCRIPT
|
2006-11-22 18:21:08 +00:00
|
|
|
just prior to switching from root to logged-in user.
|
2006-09-08 17:22:45 +00:00
|
|
|
|
2007-06-12 22:04:57 +00:00
|
|
|
config FEATURE_NOLOGIN
|
|
|
|
bool "Support for /etc/nologin"
|
|
|
|
default y
|
|
|
|
depends on LOGIN
|
|
|
|
help
|
|
|
|
The file /etc/nologin is used by (some versions of) login(1).
|
|
|
|
If it exists, non-root logins are prohibited.
|
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config FEATURE_SECURETTY
|
2006-04-13 23:22:16 +00:00
|
|
|
bool "Support for /etc/securetty"
|
2002-12-05 08:41:41 +00:00
|
|
|
default y
|
2006-10-05 10:17:08 +00:00
|
|
|
depends on LOGIN
|
2002-12-05 08:41:41 +00:00
|
|
|
help
|
2007-06-12 22:04:57 +00:00
|
|
|
The file /etc/securetty is used by (some versions of) login(1).
|
2003-10-22 09:58:56 +00:00
|
|
|
The file contains the device names of tty lines (one per line,
|
|
|
|
without leading /dev/) on which root is allowed to login.
|
2002-12-05 08:41:41 +00:00
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config PASSWD
|
2002-12-05 08:41:41 +00:00
|
|
|
bool "passwd"
|
|
|
|
default n
|
2006-10-05 10:17:08 +00:00
|
|
|
select FEATURE_SUID
|
|
|
|
select FEATURE_SYSLOG
|
2002-12-05 08:41:41 +00:00
|
|
|
help
|
2003-10-22 09:58:56 +00:00
|
|
|
passwd changes passwords for user and group accounts. A normal user
|
|
|
|
may only change the password for his/her own account, the super user
|
|
|
|
may change the password for any account. The administrator of a group
|
2003-07-14 19:37:08 +00:00
|
|
|
may change the password for the group.
|
2002-12-05 08:41:41 +00:00
|
|
|
|
2004-08-26 23:13:00 +00:00
|
|
|
Note that Busybox binary must be setuid root for this applet to
|
|
|
|
work properly.
|
|
|
|
|
2006-12-19 00:33:53 +00:00
|
|
|
config FEATURE_PASSWD_WEAK_CHECK
|
|
|
|
bool "Check new passwords for weakness"
|
|
|
|
default y
|
|
|
|
depends on PASSWD
|
|
|
|
help
|
|
|
|
With this option passwd will refuse new passwords which are "weak".
|
|
|
|
|
2007-05-08 17:52:17 +00:00
|
|
|
config CRYPTPW
|
|
|
|
bool "cryptpw"
|
|
|
|
default n
|
|
|
|
help
|
|
|
|
Applet for crypting a string.
|
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config SU
|
2002-12-05 08:41:41 +00:00
|
|
|
bool "su"
|
|
|
|
default n
|
2006-10-05 10:17:08 +00:00
|
|
|
select FEATURE_SUID
|
|
|
|
select FEATURE_SYSLOG
|
2002-12-05 08:41:41 +00:00
|
|
|
help
|
2003-10-22 09:58:56 +00:00
|
|
|
su is used to become another user during a login session.
|
|
|
|
Invoked without a username, su defaults to becoming the super user.
|
2002-12-05 08:41:41 +00:00
|
|
|
|
2004-08-26 23:13:00 +00:00
|
|
|
Note that Busybox binary must be setuid root for this applet to
|
|
|
|
work properly.
|
|
|
|
|
2006-12-19 08:55:38 +00:00
|
|
|
config FEATURE_SU_SYSLOG
|
2006-12-19 00:20:20 +00:00
|
|
|
bool "Enable su to write to syslog"
|
2006-07-10 03:05:46 +00:00
|
|
|
default y
|
2006-10-05 10:17:08 +00:00
|
|
|
depends on SU
|
2006-12-19 00:20:20 +00:00
|
|
|
|
|
|
|
config FEATURE_SU_CHECKS_SHELLS
|
|
|
|
bool "Enable su to check user's shell to be listed in /etc/shells"
|
|
|
|
depends on SU
|
|
|
|
default y
|
2006-07-10 03:05:46 +00:00
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config SULOGIN
|
2003-01-21 00:12:11 +00:00
|
|
|
bool "sulogin"
|
|
|
|
default n
|
2006-10-05 10:17:08 +00:00
|
|
|
select FEATURE_SYSLOG
|
2002-12-05 08:41:41 +00:00
|
|
|
help
|
2003-10-22 09:58:56 +00:00
|
|
|
sulogin is invoked when the system goes into single user
|
2003-07-14 19:37:08 +00:00
|
|
|
mode (this is done through an entry in inittab).
|
2002-12-05 08:41:41 +00:00
|
|
|
|
2006-10-05 10:17:08 +00:00
|
|
|
config VLOCK
|
2003-01-21 00:12:11 +00:00
|
|
|
bool "vlock"
|
2002-12-05 08:41:41 +00:00
|
|
|
default n
|
2006-10-05 10:17:08 +00:00
|
|
|
select FEATURE_SUID
|
2002-12-05 08:41:41 +00:00
|
|
|
help
|
2003-10-22 09:58:56 +00:00
|
|
|
Build the "vlock" applet which allows you to lock (virtual) terminals.
|
2002-12-05 08:41:41 +00:00
|
|
|
|
2004-08-26 23:13:00 +00:00
|
|
|
Note that Busybox binary must be setuid root for this applet to
|
|
|
|
work properly.
|
|
|
|
|
2002-12-05 08:41:41 +00:00
|
|
|
endmenu
|
|
|
|
|