Security :: Display Of Number Of Failed Logon Attempt At Logon?
Jan 26, 2010
Our system is based on RH4 and is using pam_tally and faillog to record failed attempts and to lock users out after 5 attempts. We have a requirement to provide a normal (non-root) user logging onto our system, with information regarding the number of failed logon attempts made on their account before the current successful logon (similar to the functionality provided by HP Protect Tools on Windows). My first idea was to add 'faillog -u $USER' to the bashrc, however by the time the bashrc is run - the user has been successfully authenticated and the faillog has been reset back to zero.
I am running Ubuntu 9.10 server and I am trying to get the IP address of the machine to display at boot (before login) but so far no luck. Here is what I have tried: Created a script called displayip:
which is located in the /etc/init.d directory. changed the permissions to make it executable: chmod +x displayip then ran update-rc.d displayip defaults which ran successfully. Upon boot it doesn't show up with anything.
Is there anyway to prevent a user from being able to logon at a machine (Terminal and XWindows) but allow that user to logon remotely using SSH? This user is for remote capture of logs only - on a private network (no internet access).
Running 10.04 64-bit. After logging on, the title bars around all the windows are missing. Adding "metacity --replace" as a startup command resolves the problem, but something's obviously wrong.
Doesn't occur on my other computer, so probably hardware related.
see attached checkbox-generated submission.xml.gz for hardware report.
I want to use AD sys accounts to logon to linux servers. What is the best and most secure way to do this. This because we want to ensure it is tracable when a server administrator makes changes to a linux server. Now we use root to make changes to the servers.
All of these audit messages is from one su - and root password at a gnome-terminal.This started happening from some update from koji in the last 18 hrs or so.It take 20-25 sec from su - to get the password prompt.
I downloaded the 32bit iso from the ubuntu website and wrote it to disc using imgburn.
The problem is that when i boot from cd i get the loading splashscreen with the 4 dots flashing then it loads the ubuntu background and my mouse curser spins around for awhile then tells me the installer encountered and unrecoverable error and a desktop session will now be run so you may investigate and problem or try installing again. When it reboots it asks for a username and password. i use ubuntu and blank and then it does a loop and the logon menu comes up again.
the computer is an old acer aspire running xp home sp2
i tried it on another computer a dell laptop running vista and it worked fine and can up with the menu and i clicked try now and it booted into the gui.
I have got a RHEL 5.6 server configured to authenticate via a Windows 2008 domain controller via LDAPS.Everything is working fine, except from the following: When I create a new user in Active directory and check the option "user must change password at next logon", the new user cannot logon and gets an "access denied" message. In /var/log/secure, I find the following:
Mar 1 14:43:21 cpssvn10 sshd[5363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.168.3.12 user=testuser2 Mar 1 14:43:21 cpssvn10 sshd[5363]: pam_ldap: error trying to bind as user "CN=CPSS Testuser 2,OU=IBM,DC=cpss,DC=smarterplatform,DC=com" (Invalid credentials) Mar 1 14:43:23 cpssvn10 sshd[5363]: Failed password for testuser2 from 192.168.3.12 port 4583 ssh2
As soon as I uncheck the "user must change ..." option, the user can log on without problems. Also password change via the passwd command works.
I keep getting hundreds of SSH failed logins per day. Is there a way with iptables, i can say if a user connects too to port 22 over 8 times in 10 minuntes, then block them for an hour?
A few minutes ago I was using google chrome when suddenly the scroll-lock indicator on my keyboard turned on... I pressed the scroll-lock key, but nothing happened, the light remained. I opened a terminal and ran "top" to find what processes were running when I was automatically logged out. I logged back and checked the logs and found the following entries in my auth.log:
Code: CRON[2971]: pam_unix(cron:session): session opened for user root by (uid=0) CRON[2971]: pam_unix(cron:session): session closed for user root
This all started when I had no sound being detected by my laptop's mic. I also have an external USB sound card and it was not detecting mic sound either. I had previously done recording with Audacity (it could have been back in Ubuntu 8.04).
Now, I had a feeling that I was going to break something trying to get the mic to work. Sure enough, I'm at the point now where I cannot logon to the GUI (gdm).
I made a number of changes before my last reboot.
Here's a summary of what I think is the primary cuase (pulseaudio!):
At one point, I had lost sound altogether (I believe this was a result of having installed pulseaudio Volume control, which someone used to unlock and configure their mic).
So, things were starting to degrade. Being the persistant and stubborn one that I am, I decide to trudge on.
I had read enough suggestions (and desite enough "didn't fix" responses), I decided to try removing pulseuadio altogether. After rebooting, I was not able to log on.
Let me try to describe this logon situation as clearly as possible: When the laptop boots up, it shows the Ubuntu logo with the colored dots below moving from right to left (orange/white).
When I get to the user logon screen, it's not as fancy as it normally is. The logon window which allows me to select the user is a little more basic and the background is a simple black/purple color. The day and time is displayed on the task bar below as well as a power icon with options to suspend, restart and shut down.
This is how the logon screen used to look:[url]
I've been unable to find a screenshot of the current state and I don't think I'll be able to post one due to my technologically limited situation.
When I select my user and enter the password, The screen goes blank (or displays what appears to be the console for CTRL+ALT+F1) and then I'm back at the user selection as described above as if I hadn't even tried to log on.
At this point, I'm not positive which distro I'm using, nor which kernel, but survey says:
My laptop is a Pavilion zd8000.
lspci shows I have: VGA compatible controller: ATI Technologies Inv M22 [Mobility Radeon X300]
I'm not sure if this is proper. When I run /etc/init.d/gdm stop, I get: Rather than invoking init scripts through /etc/init.d, use the service( utility, e.g. service gdm stop.
Probably not, because when I try sudo service gdm stop, it returns: stop: Unkown instance.
OK. Maybe it's OK, because running sudo service gdm start, I returned back to the logon screen. (But, I'll include this because it may indicate something, but I think it may be the way the "service" works now...)
(I do have networking enabled, so I can run apt-get and what not)
I find this interesting. I installed kdm. I started it after stopping gdm (through the service command as noted above). I was able to log on through kdm, but I'm not brought to a desktop, only a black background and a terminal window in the upper-left corner, without any window frames (I can't min/maximize/close). There doesn't appear any way to log out...
I'm not exactly sure where to go from here. I'm getting more interested in a backup/reinstall, but I may not have the ability to do that on hand, so I'd like to try to get things working. At the very least, I'd like to be able to log on and do work. Sound would be nice and a working mic would also be nice, but I can do without either of those two for now.
Most of the solutions I've been able to find in terms of not being able to log on has been a result of: - Bad usernames/passwords - Insufficient drive space to allow logon
While I haven't tried creating any new users and logging on with them, I'm confident it wouldn't do any good. df -a shows: /dev/sda1 Available = 6324296. Should be enough for basic operations.
My plan at this point is to start woking on the kdm angle. Since I am able to log on, but only to a terminal window, perhaps I can find some info on why that happens...
I am wondering if there is a way for me to logon without being prompted fory user password - I am guaranteed to be the only one using this machine.(I recall seeing a cli code that set this but after lots of searching can't find it)
I've installed F15 but due to the old age of my tablet (HP TC1100), I cannot logon to Gnome 3. It say something like "Opps, sorry something went wrong..." and then puts me back to the logon prompt. Is there any way I can logon to Gnome using the old layout? I installed KDE during install but couldn't find anything that would allow me to change how I logon to Gnome.
i've made a fresh isntallation of f15.After installing nvidia propriotary drivers, i've installed some additional package likes eclipse, thunderbird etc.Then i've shut down the pc. As I try to logon to gnome3 the next time, it only says "Opps, something went wrong..". I only have the change to logout again.Luckily ive isntalled xfce too, so I am working with it atm.
Hey currently running Lucid x64. After installing tex-common due to there being errors on all app installations (the apps all seemed to work fine though). I am unable to proceed past the GUI logon, the screen just goes black and returns back to the logon screen. I should also note that the PC was setup to automatically login, so it shouldn,t ask me to logon any way.
I had installed many updates earlier that day and also the nvidia graphics driver (before updates), rgba gtk+ module, gnome-color-chooser and upgraded nautilius. All which where working fine at the point before tex-common installation.
there i have installed 10.10 today and cant logon, i can type the username, but when i try to type the password nothing happens, the cursor blinks but no letters characters or numbers work??? the only key that appears to work is the enter key. so obviuosly i cannot enter a password and it times out after 60 seconds. what do i do is it the keyboard?? this is on an older pc (not this one) that i was using win xp on, and got sick of the hassles with windows.
I recently decided to get back into Ubuntu and installed 10.10 on my Acer Aspire 7741Z. The live USB worked great but the installed OS won't load the GUI. The loading screen does not show but instead there is a ton of text. The logon is the 'standard' logon (Ubuntu 10.10 -computer name- tty1). I can logon using the account information that the graphical installation asked for. After awhile, the screen goes blank. Pressing the power button, the text comes back and Ubuntu the message "ppdev: user-space parallel port driver" has appeared. Using "startx" causes the screen to go blank, and the screen comes back when the power button is pressed before shutting down.
I've just installed phpmyadmin on my ubuntu home server. When I go to the http://(myip)/myphpadmin the logon screen shows up. I put in my root username peter and the password that I use for mysql which I also used when I setup phpmyadmin. I get an error message: "#1045 - Access denied for user 'Peter'@'localhost' (using password: YES)"Do I need to add something to a config file somewhere?
On Ubuntu 10.04 with x11Vnc server, if the screen requires logon (such as if locked or upon reboot), through the VNC terminal, I always get authentication error (incorrect password). Sitting at the keyboard, I can logon just fine. Once logged on, I can access everything through VNC just fine.
Error in auth.log (username = bob): unix_chkpwd[3926]: password check failed for user (bob) gnome-screensaver-dialog: pam_unix(gnome-screensaver:auth): authentication failure; logname= uid=1000
after an update i cannot my pc remains in the log on screen. I insert my password then the screen goesn and of and after 4 secondit goes back in the logon screen. I run the following
I have ubuntu installed in a partition on my computer and when I installed it i made it so that you don't have to provide a password to logon to the user account. How can I change this?
I've just built a fresh Centos 5.4 install on a 533 MHz P3. This machine is going to be used as a thick client on a LAN. I'm trying to implement automatic logons to the KDE desktop but the automatic logon implementation isn't working as expected. I'm hoping that someone can tell me what I've done wrong. Here's what I've done so far:
1. Created a non-root user account named "bob". "bob" has generic low-level privileges on the machine.
2. I've tried to enable automatic logons using the following GUI menu selections:
Control Center > System Administration > Login Manager > Administrator Mode > Convenience Tab
