Re: Locking the failed login attemp

From: Michael Vilain (vilain_at_spamcop.net)
Date: 07/21/04 

Date: Wed, 21 Jul 2004 02:46:52 -0700

In article <4996bd47.0407210012.7560f36a@posting.google.com>,
 heiskr1s@hotmail.com (Kristianto) wrote:

> Hello gurus,
>
> Is there anyway to lock a user account after, say 3, failed login attempts?
>
> I know that solaris drops the tty after 5 (default). This, however, is not
> what the customer wants.
>
> They want the account "locked" and possibly a message displayed to the user.
>
> I know this take risk, specially for the failed root password.
>
> Thanks in Advance
>
> Kristianto

This is ill-advised as it's an opportunity for a denial of service
attack. All someone would need is a list of accounts and they could
lock them all out. Is there some external security requirement they
need to fulfill?

Solaris can't do this out-of the box. It would require installing a
custom PAM. There are some that do this. Google for them.

Does Solaris 10 will have this feature? Installing that might be your
solution. 

-- 
DeeDee, don't press that button!  DeeDee!  NO!  Dee...