[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Setting maximum number of login attempts



On Sun, 28 Jan 2001, Werner wrote:

> How can I set the maximum number of failed login attempts
> (telnet, rlogin) that will cause the user account to get locked?
> I couldn't find anything for telnet and rlogin.

Use pam_tally module, for example:

/etc/pam.d/login
auth       required     /lib/security/pam_tally.so onerr=fail no_magic_root
account    required     /lib/security/pam_tally.so deny=5 no_magic_root reset

After 5 bad login, account will be locked. You need to create
/var/log/faillog file, that provide info about bad login for pam_tally
module.

-- 
Piotr "Charvel" Majka | PGP & GPG Public Key: finger charvel@link.pl | Uin: 20873695
GCM d- s-:- a- C++ UL++++ P+ L+++ E--- W+ N+++ !o !K w--- !O M V- PS+ PE !Y
PGP+ t--- !5 X R tv- b !DI D+ G++ e h r y++**






[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []