LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Solaris / OpenSolaris (https://www.linuxquestions.org/questions/solaris-opensolaris-20/)
-   -   Logging failed CDE login (https://www.linuxquestions.org/questions/solaris-opensolaris-20/logging-failed-cde-login-266572/)

]un]ie 12-15-2004 03:21 AM
Logging failed CDE login
 
Hi guys,

i wish to find out more information regarding loggin failed CDE login.
the solution is on sunsolve document ID 21360, however, it isn't very "complete" and i have some queries still. Hope someone here can shared the knowledge.

i've managed to get my solaris to log CDE failed login, but it is only valid for users that were not defined in my system. What i wish to achieved is to log users that were created in my system but entered a wrong password. eg: login : root, but gives a wrong passwd. it will show login incorrect, and i wan this to be logged.

i was hoping to get an output as given in the solution sunsolve docu ID 21360, but my solaris has been patched up, and the libraries for pam has been upgraded as well. (meaning wat i have in my pam.conf now, is not pointing to /usr/lib/security/pam_unix.so.1. It has been replaced with pam_unix_auth.s0.1, pam_authtok_Get.so.1, etc etc etc. So my queries is, which library can i change/add/use to achieve loggin users who are in my systems, but key in a wrong password.

i've tried testing out all the options in pam.conf, but i still cant get an output similar to that of the document.

i'm not looking into using bsm for now, and changing /etc/init.d/dtlogin into debugging mode gives too much unnessary information.
so can we stick our discussion to pam for now ?

a cut out from the Document ID 21360 which i wish to achieve:

Nov 9 15:20:27 host dtlogin[733]: unix pam_sm_authenticate(dtlogin root),
flags = 0
Nov 9 15:20:28 host dtlogin[733]: pam_authenticate: error Authentication
failed
Nov 9 15:20:53 host dtlogin[733]: unix pam_sm_authenticate(dtlogin
wintest), flags = 0
Nov 9 15:20:54 host dtlogin[733]: pam_authenticate: error Authentication
failed
Nov 9 15:21:05 host dtlogin[733]: unix pam_sm_authenticate(dtlogin
wintest), flags = 0
Nov 9 15:30:17 host dtlogin[1029]: unix pam_sm_authenticate(dtlogin root),
flags = 0
Nov 9 15:30:19 host dtlogin[1029]: pam_authenticate: error Authentication
failed

Note that the login at 15:21:05 was successful.

:confused:

]un]ie 12-16-2004 03:00 AM
anyone ? :confused:

jlliagre 12-16-2004 03:33 PM
A search on Sunsolve's site doesn't find a document having doc id 21360.
Perhaps is it no more on line there.
Do you have a pointer ?

]un]ie 12-17-2004 12:15 AM
deleted.
:jawa:

jlliagre 12-17-2004 01:43 AM
Quote:
hmm..perhaps it's because i'm using a registered account. anyway..the full document is here:
not sure if i'm fridging any copy right issue here, if i do, someone pls tell me and i will delete this off.
I guess you do:
"Document Audience: SPECTRUM" means this doc is only available to Sun customers having one of the bronze, silver and so on support contract. It should be "Document Audience: PUBLIC" for it to be freely available.

]un]ie 12-19-2004 07:18 AM
deleted.
:jawa:


All times are GMT -5. The time now is 04:50 AM.