Security requirements acknowledging last successful/unsuccessful login CENTOS 6.x
I have a security requirement that directs me to show and acknowledge last successful login, last unsuccessful login, and number of unsuccessful logins since last successful login. I have pam_lastlog configured as a session control in system-auth. When I login, it does indeed show what I need it to show in the gdm greeter just before starting the session.
My problem is my requirement is for user acknowledgement of that message rather than just display and start session. Is there any way to capture the output and somehow write it to a file or pipe it to zenity? My hope was to put it in /etc/gdm/PreSession/Default. I have google searched until my eyes hurt without success, was hoping someone else out there has been there and done that. Thanks! |
Quote:
|
It's a DISA STIG requirement for the contracts we work on. More informational to the user, however the section is quite specific about the user having to acknowledge both a warning banner and the lastlog information. Don't see much of a clean way to do it other than script it after the user logs in and pipe it to zenity unless someone has a better idea.
|
Maybe this will help, unSpawn:
Quote:
HTH |
Ah, I missed the gist of unSpawn's question.
|
Quote:
Quote:
Code:
#!/bin/bash -- |
Thanks, I'll give that a try.
I did discover an odd twist last week, RHEL does this exactly with a popup that you have to click OK on using the default greeter and pam_lastlog. I haven't had a chance to explore the difference in the greeter setup yet. I'll post up if I find something. |
Quote:
|
Hey cujo@apl, I'm coming up on the exact same need and wondered if you figured this out. Your input would be much appreciated.
|
All times are GMT -5. The time now is 11:30 AM. |