LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-14-2019, 10:26 AM   #1
chrisr710
LQ Newbie
 
Registered: Aug 2018
Posts: 5

Rep: Reputation: Disabled
LXDM/LXDE Logging Bad Usernames


Hi:
I am attempting to log instances where a user attempts to log in to Ubuntu 16.04 through the LXDM greeter with a bad username. If the user logs in with a correct username but a bad password, it is currently logged via syslog and audit. However, if they use a bad username, nothing appears in the logs.

If they use the terminal or ssh to attempt to login with a bad username, it IS logged, so this is just isolated to LXDM.

I believe that the lxdm-greeter somehow checks the username before going to PAM... I have put some hooks (via pam_exec.so) in PAM and they never get executed when the username entered in LXDM is invalid. Additionally, the pam_faildelay module does not operate either... if the LXDM username is bad, they are prompted for a password but there is no delay before being rejected. This makes it easy for someone to guess if username is valid or not.

So my question is... is this true? Does lxdm somehow verify the username before going to PAM? Is there a way to bypass this behavior and let PAM do the checking? And also, more importantly, is there any way to log an authentication failure based on bad username when using the LXDM greeter?
Thanks!
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Default usernames in AWS for logging on to different Linux distros EC2 instance. LXer Syndicated Linux News 0 05-02-2017 09:21 AM
[SOLVED] LXDM installed but no /usr/bin/lxdm G-Known Slackware 2 12-16-2015 08:20 AM
[SOLVED] Can't login after install of lxdm--no access to cli ubume2 Arch 1 06-12-2012 08:00 PM
LXDM just restart when I login (Arch Linux) MFserver Linux - Software 1 08-19-2011 03:37 PM
Opensuse 11.2 lxde or PclinuxOs 2009.4 lxde damipereira Linux - Distributions 1 02-16-2010 02:51 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:21 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration