[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: pam_tally problems



On Wed, 26 Jun 2002, john doe wrote:

> I have installed Redhat Linux 7.3 on a Sony laptop. I want to be able to 
> stop logins after a certain number of failed attempts. I have edited the 
> /etc/pam.d/login file and added an auth and account line for pam_tally.
> 
> auth required /lib/security/pam_tally.so file=/var/log/faillog
> account required /lib/security/pam_tally.so ffile=/var/log/faillog deny=2
> 
> I have also tryed the no_reset, no_lock_time and per_user options for the 
> account entry.
> 
> It works except for the updating of the count in the faillog file. The line 
> and time are modified after each failed login but the count does not change. 
> If I manually chage the count (using pam_tally) to a value above the deny 
> value then the login is denied.

If my memory serves me right it didn't work on RH6.2 when the file was not 
created:
touch /var/log/faillog
chmod 600 /var/log/faillog

Werner


> 
> Why is the count in the faillog file not updated after each failed login.
> 
> Thanks
> Bob
> 
> ___________________________________________________________
> Sent by ePrompter, the premier email notification software.
> Free download at http://www.ePrompter.com.
> 
> _________________________________________________________________
> Join the world?s largest e-mail service with MSN Hotmail. 
> http://www.hotmail.com
> 
> 
> 
> _______________________________________________
> Pam-list mailing list
> Pam-list@redhat.com
> https://listman.redhat.com/mailman/listinfo/pam-list
> 





[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []