Jimmy Morin wrote:
>
> Fail2ban is logging false positive with authentication using pam ldap.
>
> What happen is a user login using his ldap password cause pam_unix to
> fail then pam_ldap log the user in.
>
> sshd filter for fail2ban read /var/log/secure see the pam_unix error,
> flag it even if the next line in the log says the login is successful.
>
> CentOS 7 with fail2ban 0.9.7 from EPEL.
>
> Any idea how to fix this?
My first thought would be to redo pam system-auth for login such that
pam_ldap *precedes* pam_unix.
Question: is pam_unix sufficient, or required?
mark
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
https://lists.centos.org/mailman/listinfo/centos
Re: Auth pam ldap and fail2ban
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: Auth pam ldap and fail2ban
- From: "mark" <m.roth@xxxxxxxxx>
- Date: Thu, 21 Feb 2019 10:55:58 -0500
- In-reply-to: <1724167134.8710347.1550760922951.JavaMail.zimbra@cegep-ste-foy.qc.ca>
- References: <1724167134.8710347.1550760922951.JavaMail.zimbra@cegep-ste-foy.qc.ca>
- User-agent: SquirrelMail/1.5.2 [SVN]
- References:
- Auth pam ldap and fail2ban
- From: Jimmy Morin
- Auth pam ldap and fail2ban
- Prev by Date: Re: what writes to /root/.cache/mesa ?
- Next by Date: Re: Changing UID numbers
- Previous by thread: Auth pam ldap and fail2ban
- Next by thread: Setting GDM resolution without knowing the monitor specs
- Index(es):
 |