On Tue, Apr 20, 2010 at 08:26:18PM +0100, Tom Brown wrote: > Hi > > I am trying to lock users after 3 attempts and then set the timeout > before they can log in again. > I thought i could achieve this with > > auth required pam_tally.so deny=3 unlock_time=600 > > in /etc/pam.d/system-auth but it seems to not be the case - I cant > find a working config for this anywhere and i wonder if anyone has one > they can share? > > thanks I'm not familiar with this module, but it looks like there's a userspace tool 'pam_tally' which you could use to query the tally files. Might be worth confirming that the login failures and such are even being tracked correctly. Any errors in your logs? A brief perusal of the man page seems to indicate that your syntax is correct... Ray _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: CentOS 5 - locking out users afer 3 failed attempts
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: centos@xxxxxxxxxx
- Subject: Re: CentOS 5 - locking out users afer 3 failed attempts
- From: Ray Van Dolson <rayvd@xxxxxxxxxxxx>
- Date: Tue, 20 Apr 2010 12:30:08 -0700
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <p2i63a40a971004201226l64733d5axf60044a0721756c7@xxxxxxxxxxxxxx>
- References: <p2i63a40a971004201226l64733d5axf60044a0721756c7@xxxxxxxxxxxxxx>
- User-agent: Mutt/1.5.20 (2009-08-17)
- References:
- CentOS 5 - locking out users afer 3 failed attempts
- From: Tom Brown
- CentOS 5 - locking out users afer 3 failed attempts
- Prev by Date: CentOS 5 - locking out users afer 3 failed attempts
- Next by Date: CentOS 5 - locking out users afer 3 failed attempts
- Previous by thread: CentOS 5 - locking out users afer 3 failed attempts
- Next by thread: CentOS 5 - locking out users afer 3 failed attempts
- Index(es):
 |