Linux Fedora Core 2: Password, Login, and Pam
Tom Browder
tbrowder at cox.net
Sat Dec 4 15:10:03 UTC 2004
> -----Original Message-----
> From: pam-list-bounces at redhat.com
> [mailto:pam-list-bounces at redhat.com] On Behalf Of Tomas Mraz
> Sent: Saturday, December 04, 2004 4:48 AM
> To: Pluggable Authentication Modules
> Subject: Re: Linux Fedora Core 2: Password, Login, and Pam
Thanks to Tomas for the reply.
> > 2. Lockout an account for time X after three failed attempts.
> This should be achievable using pam_tally.so but the
> functionality is partly broken and also not much secure (even
> after lockout it can reveal succesfull password break attempt
> to attacker).
Is anyone aware of an active effort to fix this? Would selinux be a place
to look?
Thanks.
Tom Browder
More information about the Pam-list
mailing list