[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

RE: ftp/sftp user account lockout threshold



That's very strange, because I am the lucky winner of a fourth try (when
I specify deny=3)!

I'll do some more testing - I may be missing something obvious.

Thanks. 

-----Original Message-----
From: redhat-list-bounces redhat com
[mailto:redhat-list-bounces redhat com] On Behalf Of Bill Tangren
Sent: 09 August 2007 13:56
To: General Red Hat Linux discussion list
Subject: Re: ftp/sftp user account lockout threshold

Johan Booysen wrote:
> I've finally gotten round to implementing the pam_tally module.  It 
> does seem to do the trick, but I've noticed that using the following 
> line actually allows for 4 logon attempts:
> 
> account required /lib/security/$ISA/pam_tally.so deny=3 no_magic_root 
> reset
> 
> Is that how it's supposed to work?
> 
> Thanks!
> 
> Johan

No. This means three failed login attempts, and you're locked out. You
don't get a fourth try. I just tested it.

-- 

redhat-list mailing list
unsubscribe mailto:redhat-list-request redhat com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]