LinuxQuestions.org
Did you know LQ has a Linux Hardware Compatibility List?
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 10-12-2003, 10:42 PM   #1
jester_69
Member
 
Registered: May 2002
Location: Sydney Australia
Distribution: Redhat 6.1 & 7.2
Posts: 91

Rep: Reputation: 15
Limit the amount of login attempts to machine


I am running RH 7.3 & when logging into it via ssh i get up to 8 attempts before it disconnects me. I would like to know how to lower this to say 3. I have attempted to do this with /etc/login.defs but it is still giving me 8 chances.

Does anyone what i am missing

Many Thanks

Andrew
 
Old 10-13-2003, 02:22 PM   #2
iainr
Member
 
Registered: Nov 2002
Location: England
Distribution: Ubuntu 9.04
Posts: 631

Rep: Reputation: 30
Are you sure its giving you 8 chances and not 120 seconds.

I don't know of an ssh option to limit login tries (a bit odd - there should be one) but there is an option to limit the connection time. The LoginGraceTime value in sshd_config defaults to 120 seconds and gives the time after which a user is kicked off without a successful login.

Try reducing this time. After changing sshd_config, look for the sshd process with a Parent PID of 1 and kill it with a kill -1. This will refresh sshd without killing off existing processes.

Iain.
 
Old 10-13-2003, 02:50 PM   #3
swell
LQ Newbie
 
Registered: Jul 2003
Location: Atlanta, GA
Distribution: SuSE
Posts: 17

Rep: Reputation: 0
Is that controlled by /etc/login.defs? In the case of vsftp, the maximum number of connecting is set in /etc/xinetd.d/vsftpd by a variable called "instances". I found this variable in another file :/etc/xinetd.conf, but I think the default value can't be as small as 8. In suse, the default value is 20.
 
Old 10-13-2003, 08:31 PM   #4
jester_69
Member
 
Registered: May 2002
Location: Sydney Australia
Distribution: Redhat 6.1 & 7.2
Posts: 91

Original Poster
Rep: Reputation: 15
MMm I thought it was more a PAM module /lib/security/pam_tally.so

where you can setup something like deny=3 (maximum login retries).

I have set this but it does not make a difference
 
Old 10-14-2003, 02:35 PM   #5
swell
LQ Newbie
 
Registered: Jul 2003
Location: Atlanta, GA
Distribution: SuSE
Posts: 17

Rep: Reputation: 0
Depends on your distro, I guess.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
How do I limit the amount of processes a user can run? houler Slackware 26 04-04-2005 08:02 PM
Is there a way to limit login attempts in RHL 7.3? RickMean Linux - Security 1 12-24-2004 08:54 PM
limit the amount of bandwidth used by certain protocols chrisfirestar Linux - Networking 4 03-22-2004 09:12 PM
Limit amount of emails on server ganninu Linux - Networking 7 07-30-2003 11:21 AM
vsftp - limit login attempts bandersson Linux - Security 0 01-01-2003 04:37 PM


All times are GMT -5. The time now is 03:00 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration