Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I would like to send a banner to a client after 2 failed password attempts. I know how to send a banner before authentication and after authentication. But I don't know if I can send a banner at any time I want, in my case after 2 failed password.
If someone bad is trying to hack your system you do NOT want to give them clues as to WHY they are being unsuccessful. This is why most system just tell you "login failed" rather than "invalid user" or "invalid password". No point in telling them which part they GUESSED correctly.
If you really do want to do it anyway you could probably muck with pam modules to do what you want.
I display a scary warning message before the prompt. I stole this off of Centos or Redhat a long time ago.
Quote:
WARNING : Unauthorized access to this system is forbidden and will be
prosecuted by law. By accessing this system, you agree that your actions
may be monitored if unauthorized usage is suspected.
Dont ever tell a user what they are doing wrong with regards to login attempts. If you really want something informative,.. make a message that says 'see systems administrator'.
I don't want to give a standard banner that uniquely identifies me, so I have a cron script that writes generic output, such as the output of `fortune`, to a banner file every day. Ssh uses that banner.
The idea is that an IP scanner will never receive output that uniquely identifies me. They can still get me from the IP address of course, but nothing from a file containing several million IP addresses and output that they can grep.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
