To allow or deny access to specific users, crontab uses the files /etc/cron.allow and /etc/cron.deny. Based on the existence of /etc/cron.allow and /etc/cron.deny files, crontab decides whom to give access to cron in following order.
- If cron.allow exists – only the users listed in the file cron.allow will get an access to crontab.
- If cron.allow does not exist – all users except the users listed into cron.deny can use crontab
- If neither of the file exists – only the root can use crontab
- If a user is listed in both cron.allow and cron.deny – that user can use crontab.