LinuxQuestions.org
View the Most Wanted LQ Wiki articles.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices

Reply
 
Search this Thread
Old 04-25-2008, 07:40 AM   #1
mccartjd
Member
 
Registered: Apr 2008
Posts: 107

Rep: Reputation: 15
Smile Configure Failed logins to lock accounts after 5 failed attempts


I found another site that swears if I go to the /etc/pam.d/system-auth and add the comments below users who fail to login with the correct password would get locked out after 5 failed attempts. Do the lines below look about right?


auth required /lib/security/$ISA/pam_tally.so onerr=fail no_magic_root

account required /lib/security/$ISA/pam_tally.so per_user deny=5 no_magic_root reset
 
Old 04-25-2008, 08:09 AM   #2
Agrouf
Senior Member
 
Registered: Sep 2005
Location: France
Distribution: LFS
Posts: 1,591

Rep: Reputation: 79
They do look about right.
 
Old 04-25-2008, 08:47 AM   #3
Fyl0n
LQ Newbie
 
Registered: Mar 2008
Posts: 5

Rep: Reputation: 0
What happens when I fail 5 time with login?
Does the login procedure block or something?
 
Old 04-25-2008, 08:50 AM   #4
Agrouf
Senior Member
 
Registered: Sep 2005
Location: France
Distribution: LFS
Posts: 1,591

Rep: Reputation: 79
Pam reports failure and login is denied. Concretely, you get rejected with a rejection message. You then need to ask the administrator to reset the login counter to log in again.
 
Old 05-05-2008, 07:19 AM   #5
mccartjd
Member
 
Registered: Apr 2008
Posts: 107

Original Poster
Rep: Reputation: 15
Agrouf or anyone,

Ok the 5 failed logins does lockout the account however, the passwd -u does not unlock the account. Above you mention "reset the login counter to log in again". How do I reset the login counter?

A million thanks
John
 
Old 05-05-2008, 08:02 AM   #6
Agrouf
Senior Member
 
Registered: Sep 2005
Location: France
Distribution: LFS
Posts: 1,591

Rep: Reputation: 79
edit /var/log/faillog
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Constant failed login attempts... seanferd Linux - Security 8 11-09-2006 08:42 AM
Timeout between failed login attempts wuicci Linux - Security 3 06-01-2006 04:40 AM
Failed SSH login attempts Capt_Caveman Linux - Security 38 01-03-2006 03:22 PM
lock password after failed attempts... manudath Linux - Security 2 04-28-2005 10:55 AM
all attempts failed btb103 Linux - General 1 10-23-2001 05:31 PM


All times are GMT -5. The time now is 07:42 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration