Well, i have a question/problem for the real die hards..!

we're having an intranet up and runnin,
authorisation is done with the auth_pam module fot Apache.
pam authorisation is done with pam_winbind.so agains samba PDC server.

it alworks ok.

but now we need some sort of failtrhough.

the idea is that after trying to login for (let's say) 3 or 5 time
the account (even better the ip adress) is blocked.
to prevent hacking of user accounts from a IP address.
in this case, if a student is trying to hack other studends, or even worse teachers accouts
his or her ip is blocked, and that specific computer is excluded preventing it to login ever.!
(unless he/she pay's a visit to the system/network manager explaining his/her way's)

annyway, how can i setup a black/white list system, based on login attempts info from
the linux pam system, or apache webserver ??

all inputs are welcome..

Greets,

Collen

Ohhh, splendit.. Thx

that was indeed where i was looking for...
(jottum)

Greetz,

Collen

Oops, forgot..

this pam_tally, does not block IP numbers...
i need it for our intranet. (http auth)

the idea is the lockout potential abusers..
and just blocking the accounts, leaves the potential to try other accounts from the same ip/computer..

sorry, i cheered to soon

Collen.