13.3 /etc/security

The following files are shared in the distributed system. Typically, they come from the /etc/security directory.

/etc/group The /etc/group file
/etc/hosts The /etc/hosts file
/etc/passwd The /etc/passwd file
/etc/security/.ids The next available user and group ID
/etc/security/.profile The default .profile file for new users
/etc/security/acl The /etc/security/acl file stores system-wide ACL definitions for protected services that will be reactivated at the next system boot by the /etc/rc.tcpip file.
/etc/security/audit/bincmds Bin-mode auditing commands for this host
/etc/security/audit/config Local audit configuration
/etc/security/audit/events List of audit events and formats
/etc/security/audit/objects List of audited objects on this host
/etc/security/audit/streamcmds Stream-mode auditing commands for this host
/etc/security/environ Per-user environmental variables
/etc/security/group Extended group information from the /etc/security/group file
/etc/security/limits Per-user resource limits
/etc/security/passwd Per-user passwords
/etc/security/priv Ports that are to be designated as privileged when the system starts are listed in the /etc/security/priv file
/etc/security/services Ports listed in the /etc/security/services file are considered exempt from ACL checks
/etc/security/user Per-user and default user attributes


The following files in the /etc/security directory are not to be shared in the distributed system, but are to remain host-specific:

/etc/security/failedlogin Log file for failed logins per host
/etc/security/lastlog Per-user information about the last successful and unsuccessful logins on this host
/etc/security/login.cfg Host-specific login characteristics for trusted path, login shells, and other login-related information
/etc/security/portlog Per-port information for locked ports on this host