# -*- mode: python; coding: utf-8 -*-

include("pam")

header("""
/etc/pam.d/common-account - authorization settings common to all services

This file is included from other service-specific PAM config files,
and should contain a list of the authorization modules that define
the central access policy for use on the system.  The default is to
only deny service to users whose accounts are expired in /etc/shadow.
""")

print "account sufficient %s" % pam_module
print "account required   pam_unix.so use_first_pass"