LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 11-13-2006, 06:33 PM   #1
empororvader
LQ Newbie
 
Registered: Nov 2006
Location: Brentwood, TN
Posts: 4

Rep: Reputation: 0
Fedora Core: PAM_abl Module installation help


I have limited knowledge of Linux and need to install the pam_abl module on a Fedora Core Linux used as a web server. The server is configured to use sendmail (and maybe postfix) as the Mail Transfer Agent. The pam_abl module would seem to solve the problem of repeated failed login attempts by malicious attacks. My goal is to fix this problem as soon as possible.

Not having much experience with Linux short of really basic exploration and simple commands, I am not certain what I need to do to install the module. Nor where the components need to be installed. Some files have comment lines indicating where they (should) need to be placed in the Linux directoy tree:

The package came with the following items: (I have recreated a tree view of these and my notes in colors as I can decipher)

------------------------------------------------
AUTHORS ...documentation only...no coding
conf/
.....pam_abl.conf ...config, db paths file
.....system-auth ...path listing
.....CVS/
..........Entries
..........Repository
..........Root
config.c ...C++ code files (functions,etc)
COPYING ...documentation only...no coding
Copyright ...documentation only...no coding
CVS/
.....Entries
.....Repository
.....Root
deps ...C++ code files (functions,etc)
doc/
.....copying.html
.....index.html
.....pam_abl.html
.....style.css
.....CVS/
..........Entries
..........Repository
..........Root
log.c ...C++ code files (functions,etc)
Makefile
NEWS ...documentation only...no coding
pam_abl.c ...C++ code files (functions,etc)
pam_abl.h ...C++ code files (functions,etc)
README ...documentation only...no coding
rule.c ...C++ code files (functions,etc)
THANKS ...documentation only...no coding
tools/
.....config.c ...C++ code files (functions,etc)
.....deps ...C++ code files (functions,etc)
.....log.c ...C++ code files (functions,etc)
.....Makefile
.....pam_abl.c ...C++ code files (functions,etc)
.....pam_abl.h ...C++ code files (functions,etc)
.....rule.c ...C++ code files (functions,etc)
.....CVS/
..........Entries
..........Repository
..........Root
------------------------------------------------

My proble lies in where to put these files. The only one that I can be sure of is pam_abl.conf because a comment line in the file implies it should be "/etc/security/pam_abl.conf". (The documentation files are not in question, but do not address my concerns either.) Is there a standard method to this tree. Are all these subflders with the "/etc/security" directory or are they scattered through other directories such as "/etc/mail". I would assume the system-auth file should be in the same directory as pam_abl.conf. What about the other files? All the ".c" files such as rules.c appear to be in the "/tools" subdirectory as well. Are two copies required, or is only one necessary? Does it belong in the same directory as pam_abl.conf, or in a "/tools" subdirectory?

The contents of the /etc/security/pam_abl.conf file are:

# /etc/security/pam_abl.conf
# debug
host_db=/var/lib/abl/hosts.db
host_purge=2d
host_rule=*:10/1h,30/1d
user_db=/var/lib/abl/users.db
user_purge=2d
user_rule=!root:10/1h,30/1d

I understand the rules (like "!root:10/1h,30/1d"), but is the location of the host_db and user_db a requirement? neither of the database files (host or user) exist, and neither does the "abl" directory. I can make the directory with no problem. But, do I need to create these ".db" files too, and if so, is there a required format to the data here? Is there a macro that makes them? Which file(s) does Makefile actually make?

If any one would be kind enough to walk me through a module installation, I would be greatful. Please remember that I am a newbie to the Linux system, but the Linux system is already live with a few domains attached. So I can't simply not bother with it. Thank you in advance for any time and help.

Last edited by empororvader; 11-13-2006 at 06:37 PM.
 
Old 11-14-2006, 11:06 AM   #2
empororvader
LQ Newbie
 
Registered: Nov 2006
Location: Brentwood, TN
Posts: 4

Original Poster
Rep: Reputation: 0
Adding PAM_abl to existing PAM module

Please let me add that the several components of PAM are already installed (mostlikely by my former boss). I am not looking for guidance on setting up the entire PAM "network" of modules... I just need help adding the pam_abl module to the existing PAM on the Linux server. {This is to stop the repeated attempts at cracking passwords. With so many login attempts, the site resources are being drained.}

Knowing that PAM by its very nature blocks logins, I don't want to mess this up by "installing" it in the wrong place...and blocking access or use to the site by authorized users.

Will editing the Makefile file do the installation for me? This is probably a stupid question, but if it is a macro, do you "run" it like an applet, or do you "edit" the file using a text editor like vi? Can I place all of the files in the tree (last post) within a directory that I make, or do they need to be in certain levels to allow the rest of the PAM modules to work with pam_abl?

So much to learn, so little time...

Thank you for any help you can offer.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
GLX module Missing on display Fedora core 2 mission_control Linux - Software 4 08-24-2004 07:21 PM
module file-extension Fedora Core 2 jpostma Linux - Distributions 0 06-14-2004 03:28 PM
Fedora Core 2 test 1- No sound module compiled in kernel? frontier1 Fedora 1 02-14-2004 09:51 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:54 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration