lock user account after failed login attempts with FC 10
I am trying to figure out how to lock a user account after 3 failed attempts (incorrect passwords) with FC10. I have tried two methods.
I added the following lines two the default rules list that came with
FC 1- in /etc/pam.d/system-auth-ac
1:
auth required pam_tally.so deny=3
account required pam_tally.so
If I tail -f /var/log/secure
I see that is pam_tally(su:auth): user xxxx (501) tally 4 deny 3
However once I enter in the right password no matter how high the tally, I still log in successfully
why?
2:
auth required pam_tally2.so deny=3
account required pam_tally2.so
With this I actually get a brief message saying my account has been locked. However If I just enter in the correct password I login just fine.
why?
So basically I am looking for a config that is compatible with FC10 and will lock a user out after 3 failed login attempts.
Thanks for any help.
Jon Flechsenhaar
Network Services Layer
|