How will you implement account lockout policy in linux?
 

Hi all,

What are the commands or directory were I could set the number of Bad logon attemps and so forth in ubuntu linux (10.04) ?

account lockout after failed log in...
 

There is no feature in the gui to setup this action. So in short, I could find no directory in that regard.

However there is a command I found. Faillog. It's path should be (if it is installed) /var/log/faillog.

Here are some links to read that will teach you how to use the command:

http://manpages.ubuntu.com/manpages/...faillog.8.html (recommended)

http://blog.bodhizazen.net/linux/ubuntu-how-to-faillog/

http://linux.die.net/man/8/faillog

That should do it. Have fun.

PS

I found the information above through google, searching the following query's:

"failed login lockout policy linux ubuntu 10.04"

This did not print any links that fit. But there were some keywords I picked up.

So refining the search a little got the answer:

"lockout failed login attempts ubuntu 10.04"

In this search, there was even a link to LQ where there was a similar discussion but pam_tally was used for this same task.

Finally I searched "faillog"

I was going through this page http://blog.bodhizazen.net/linux/ubuntu-how-to-faillog/

can any one explain what does the following line mean ?

auth required pam_tally.so per_user onerr=fail

especially per_user onerr=fail means ?

Try this:

http://linux.die.net/man/8/pam_tally

I think referring to the manuals will always prove most helpful.

So if there is a command or a software or anything like that. I will simply go to google and type in:

faillog manual

or

pam_tally manual

or

gnome manual

There are many manuals that can be read in terminal as well.

You may try $ pam_tally -h in a terminal. See if there is a "man" (manual).

Also read this forum thread:

http://www.linuxquestions.org/questi...-rhel5-624257/

I hope this helps.

Neq