Package: libpam-modules
Version: 0.76-22
Severity: normal
Hello Maintainer,
I was using "faillog" since many years because I need fo a security
policy to block users after 5 false logins. I have never checked it,
because it WAS working in Potato and Woody from scratch...
Now I had a problem with hack attemts and encountered that the file
/var/log/faillog is missing...
After reading the documentation from "shadow" I have found nothing.
After several hours of search I have found the pam-module "tally"
which is responsable for writing the file /var/log/faillog.
OK, I have edited the /etc/pam.d/login to use pam_tally.so:
auth required pam_tally.so onerr=fail;deny=10;per_user;no_lock_time
with variation of
auth required pam_tally.so onerr=fail; deny=10; per_user; no_lock_time
and
auth required pam_tally.so onerr=fail deny=10 per_user no_lock_time
and the used
faillog -a m 5
faillog -u root -m 0
which should work. But after some tries I have encountered that the
fail_count is not increased. it stays every time by 0 (zero)
Here the output:
----8<--------------------------------------------------------------
[EMAIL PROTECTED]:~ > faillog -a
Username Failures Maximum Latest
root 0 0 Mon Jul 24 20:42:33 +0200 2006 on
michelle.konzack 0 5 Mon Jul 24 20:42:58 +0200 2006 on
noor.nurani 0 5 Mon Jul 24 20:44:52 +0200 2006 on
zelie.domeracki 0 5 Mon Jul 24 20:30:12 +0200 2006 on
[EMAIL PROTECTED]:~ > ls -Al /var/log/faillog
-rw------- 1 root adm 1572840 Jul 24 20:44 /var/log/faillog
----8<--------------------------------------------------------------
So whats wrong with the module?
The fail_file is updated at each failure.
Is this a Bug?
Or if this is a config error by me, what about puting this line
commented out with a short description per default in the
/etc/pam.d/login which would be easier to use?
Greetings
Michelle Konzack
-- System Information
Debian Release: 3.1
Kernel Version: Linux michelle1.private 2.4.27-2-386 #1 Wed Aug 17 09:33:35 UTC
2005 i686 GNU/Linux
Versions of the packages libpam-modules depends on:
ii libc6 2.3.2.ds1-22 GNU C Library: Shared libraries and Timezone
ii libcap1 1.10-14 support for getting/setting POSIX.1e capabil
ii libdb3 3.2.9-22 Berkeley v3 Database Libraries [runtime]
ii libpam0g 0.76-22 Pluggable Authentication Modules library
--
Linux-User #280138 with the Linux Counter, http://counter.li.org/
##################### Debian GNU/Linux Consultant #####################
Michelle Konzack Apt. 917 ICQ #328449886
50, rue de Soultz MSM LinuxMichi
0033/6/61925193 67100 Strasbourg/France IRC #Debian (irc.icq.com)
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
