LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Linux > Linux - Security
Reload this Page pam_tally --> deny doesnt seem to work when magic_root
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Tags used in this thread
Popular LQ Tags ,

Reply
 
Thread Tools
Old 10-24-2008, 06:48 AM   #1
skokul
LQ Newbie
 
Registered: Oct 2008
Posts: 8
Thanked: 0
Question pam_tally --> deny doesnt seem to work when magic_root

[Log in to get rid of this advertisement]
Hello LQ,

As per the RHEL 5.2, help on pam_tally says;

magic_root
If the module is invoked by a user with uid=0 the counter is not incremented. The sys-admin should use this for user launched services, like su, otherwise this argument should be omitted.

But, its not working as expected...

auth required pam_tally.so onerr=fail per_user deny=3 magic_root
account required pam_tally.so magic_root

The /var/log/faillog doesnt get updated.

Inturn, it works fine if I give no_magic_root or if I remove magic_root.

auth required pam_tally.so onerr=fail per_user deny=3 no_magic_root
account required pam_tally.so no_magic_root

or

auth required pam_tally.so onerr=fail per_user deny=3
account required pam_tally.so

Now, faillog gets updated and also the account gets locked after 3 failed login attempts...

I am afraid, if this would 'lock' -> "root" also.
So I tested to check, if root gets locked after 3 failed login attempts
and indeed I was puzzled to see "root" alone is not "lockedout" after even 15 failed login attempts...

I am confused.. with this...

Is this behaviour ...? Can I trust this... against DOS attacks...

Any help would be much helpful !!!

Thanks & Regards
KoKul
skokul is offline  
Tag This Post ,
Reply With Quote

Reply

Bookmarks


Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
sshd host allow/deny doesn't work Torquemalex Linux - Security 2 08-25-2008 04:23 PM
hosts.deny doesn't seem to work xpucto Linux - Security 10 11-20-2006 08:03 PM
pam_tally doesn't work when a password change is required jyoung4 Linux - Security 0 06-15-2006 06:38 PM
Why doesnt my USB mouse doesnt work? barkha Linux - Hardware 2 08-16-2005 12:31 PM
pam_tally - Red Hat 9 - Does it work? terminaljunkie Linux - Security 2 06-10-2003 09:21 AM


All times are GMT -5. The time now is 04:37 AM.

Contact Us - Advertising Info - Rules - LQ Merchandise - Donations - Contributing Member - LQ Sitemap - LinuxQuestions.org - Linux Forums
Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
RSS2  LQ Podcast
RSS2  LQ Radio
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: @linuxquestions
Open Source Consulting | Domain Registration