Oh and one security facet of pam_tally2 is that because we're not using the split greeter, we'd have to store the tally record in the user's home directory. I don't think this is a security risk, since if you have access to the home directory, you don't need to bother with being locked out. And the system is inherently single-user as long as we don't have a split greeter. So no worries there. Just pointing it out.
-- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unity8 in Ubuntu. https://bugs.launchpad.net/bugs/1347907 Title: create a delay for password failure attempts Status in Ubuntu UX bugs: New Status in The Unity 8 shell: New Status in “unity8” package in Ubuntu: New Bug description: capturing the desire from our security team to add in a delay for the ability to attempt unlocks on the greeter. unless design provides some other specification choose 5 potential failed attmepts, upon which the greeter will not unlock or allow a password entry attempt for 1 hour. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-ux/+bug/1347907/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
