[TriLUG] How do I change the allowed number of login attempts from 3 to 1

Jon Carnes jonc at nc.rr.com
Tue Mar 9 15:45:34 EST 2004


This is hard-coded into:
   /usr/lib/python2.2/site-packages/authconfigmodule.so

You would have to grab the source from the authconfig srpm and
regenerate the authconfigmodule.so file.  It's written there as a simply
string... You might actually just set it using a hex editor (but make a
backup copy of the file first!)

You might need to restart PAM after making a change to the system-auth
file.

Good Luck - Jon Carnes

On Tue, 2004-03-09 at 13:55, Ralph Blach wrote:
> Jon,
> 
> You are absolutely correct, but Redhat does not tell how to code this into there
> /etc/sysconfig/authconfig file.  So everytime authconfig is run, the /etc/pam.d/system-auth file
> get overwritten.
> 
> Chip
> 
> Jon Carnes wrote:
> > On Tue, 2004-03-09 at 09:18, Ralph Blach wrote:
> > 
> >>I am running Redhat 9.0 on am amd x86.  Its a pretty basic system
> >>As the main login shell I run sshd, with ftp and telnet disabled.
> >>
> >>I know this is basic, but I looked for an hour on this and could not find it
> >>How do I change the number of login tries from 3 before a time out to 1.
> >>
> >>It would also be nice to change the time between tries to so.
> >>
> >>Thanks
> >>
> >>Chip
> > 
> > 
> > /etc/pam.d/system-auth
> >   password    required      /lib/security/$ISA/pam_cracklib.so retry=3
> > 
> > Reading the PAM documents will take a good chunk of your time, but it is
> > worth the chunk if such things interest you... :-)
> > 
> > I also suggest you look at /etc/security for some really nifty controls
> > on login times etc...
> > 
> > HtH - Jon Carnes
> > 
> 




More information about the TriLUG mailing list