LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 07-17-2003, 10:57 AM   #1
Rig24
LQ Newbie
 
Registered: Dec 2002
Location: McLean
Posts: 28

Rep: Reputation: 15
pam_tally help


Trying to get pam_tally working to lock out users after 3 failed attempts. Here is my /etc/pam.d/login file:

auth required /lib/security/pam_securetty.so
auth required /lib/security/pam_stack.so service=system-auth
auth required /lib/security/pam_nologin.so
auth required /lib/security/pam_tally.so onerr=fail no_magic_root
account required /lib/security/pam_tally.so deny=3 no_magic_root
account required /lib/security/pam_stack.so service=system-auth
password required /lib/security/pam_stack.so service=system-auth
session required /lib/security/pam_stack.so service=system-auth
session optional /lib/security/pam_console.so

The faillog file will keep a record of failed logins but after a user goes past 3 failed it doesn't lock out the user. Any idea's.

Thanks
 
Old 07-18-2003, 08:27 AM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
I've got tally in both the auth and the account section. The one under account is the second account line, similar to the tally line under auth, but with the "deny=3" argument added.
 
Old 07-18-2003, 08:35 AM   #3
Rig24
LQ Newbie
 
Registered: Dec 2002
Location: McLean
Posts: 28

Original Poster
Rep: Reputation: 15
I have it both sections also. Just found out today that I needed to add those lines into the /etc/pam.d/rlogin file sence I was trying to lock a user out who is trying to use rlogin. And it actually works now! Thanks anyways.
 
Old 07-18-2003, 11:42 AM   #4
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
I apologize, I havent been reading your post too well, busy on the latest "Have I been attacked?" thread. I hope you're using rlogin restricted to a LAN where you can trust each and every box (and even then).
 
Old 05-29-2007, 04:11 AM   #5
kskkumar
Member
 
Registered: Aug 2005
Posts: 40

Rep: Reputation: 15
Quote:
Originally Posted by Rig24
Trying to get pam_tally working to lock out users after 3 failed attempts. Here is my /etc/pam.d/login file:

auth required /lib/security/pam_securetty.so
auth required /lib/security/pam_stack.so service=system-auth
auth required /lib/security/pam_nologin.so
auth required /lib/security/pam_tally.so onerr=fail no_magic_root
account required /lib/security/pam_tally.so deny=3 no_magic_root
account required /lib/security/pam_stack.so service=system-auth
password required /lib/security/pam_stack.so service=system-auth
session required /lib/security/pam_stack.so service=system-auth
session optional /lib/security/pam_console.so

The faillog file will keep a record of failed logins but after a user goes past 3 failed it doesn't lock out the user. Any idea's.

Thanks
Try adding per_user option in the account required line
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
pam_tally file permissions error scottjwoodford Linux - Software 0 09-12-2005 10:19 AM
Successful login from locked screen causes pam_tally to increment. Why? mzmyewski Linux - Security 2 03-03-2005 09:25 AM
pam_tally denies valid log ins sfhc Linux - Security 1 08-30-2004 12:01 PM
pam_tally - Red Hat 9 - Does it work? terminaljunkie Linux - Security 2 06-10-2003 08:21 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 08:24 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration