Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
04-07-2006, 08:38 AM
|
#1
|
Member
Registered: Jun 2003
Location: /
Distribution: Fedora/Debian
Posts: 86
Rep:
|
Apache auth_pam / pam winbind deny failed user auth
Well, i have a question/problem for the real die hards..!
we're having an intranet up and runnin,
authorisation is done with the auth_pam module fot Apache.
pam authorisation is done with pam_winbind.so agains samba PDC server.
it alworks ok.
but now we need some sort of failtrhough.
the idea is that after trying to login for (let's say) 3 or 5 time
the account (even better the ip adress) is blocked.
to prevent hacking of user accounts from a IP address.
in this case, if a student is trying to hack other studends, or even worse teachers accouts
his or her ip is blocked, and that specific computer is excluded preventing it to login ever.!
(unless he/she pay's a visit to the system/network manager explaining his/her way's)
annyway, how can i setup a black/white list system, based on login attempts info from
the linux pam system, or apache webserver ??
all inputs are welcome..
Greets,
Collen
|
|
|
04-07-2006, 09:01 AM
|
#2
|
Member
Registered: Nov 2004
Location: Townsville, Australia
Distribution: Fedora Core 5, CentOS 4, RHEL 4
Posts: 855
Rep:
|
|
|
|
04-07-2006, 10:22 AM
|
#3
|
Member
Registered: Jun 2003
Location: /
Distribution: Fedora/Debian
Posts: 86
Original Poster
Rep:
|
Ohhh, splendit.. Thx
that was indeed where i was looking for...
(jottum)
Greetz,
Collen
|
|
|
04-10-2006, 03:20 AM
|
#4
|
Member
Registered: Jun 2003
Location: /
Distribution: Fedora/Debian
Posts: 86
Original Poster
Rep:
|
Oops, forgot..
this pam_tally, does not block IP numbers...
i need it for our intranet. (http auth)
the idea is the lockout potential abusers..
and just blocking the accounts, leaves the potential to try other accounts from the same ip/computer..
sorry, i cheered to soon
Collen.
|
|
|
All times are GMT -5. The time now is 04:24 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|