I have a requirement to restrict certain users to logging in in certain ways. For example, some users can ftp, others can ftp, ssh, and get a shell, other users can relay mail using auth login. I am pretty sure I can do this though pam.conf. Has anyone actually done this? Can someone slide me some examples?