Does anyone know a method for setting the timeout period for failed logins on Linux RHEL5.x systems? Linux docs say to set the failed login delay paramter in /etc/login.defs to the desired seconds. I did this, but the settings have no effect, ie weather set to 2,4,10, etc, the actuall failed login timeout period(which I verified with a stopwatch), never changes.
View 1 RepliesIs there an ssh or sshd parameter that can be set to block out a user after a set number of attempts tp login ?
View 1 Replies View RelatedI'm trying to lock an account after a number of failed login attempts in a RHEL5.
This is the relevant configuration in /etc/pam.d/system-auth
In the logs I can see how the count of failed logins increase and exceeds my deny option but the account isn't locked
Do I need any other option in the PAM file? Is there any other way to lock an account?
I keep getting hundreds of SSH failed logins per day. Is there a way with iptables, i can say if a user connects too to port 22 over 8 times in 10 minuntes, then block them for an hour?
View 7 Replies View RelatedI am trying to get OpenLDAP to authenticate user logins, but running around in circles. Are there any logs produced by either client and/or server that would indicate possible reasons why it was unable to login as a user?Below is an explanation, any ideas would be appreciated, as I think everything is setup as per the various articles on using LDAP.
I have a CentOS 5.5 OpenLDAP server, and several others, some host services, some are file shares (samba).So far I have been able to successfully configure OpenLDAP to carry out all the ldap* commands from both the local server and from any of the remote servers, either via non-ssl or ssl connections. However, as soon as I try connecting any services up to it, it doesn't play ball.Back to basics, having cleared off all previous attempts at this from all machines, I have gone through the following:
Installed OpenLDAP server/client on host (plus nss_ldap).
Configured /etc/openldap/slapd.conf (see below)
Configured /etc/openldap/ldap.conf (see below)
[code]...
A few minutes ago I was using google chrome when suddenly the scroll-lock indicator on my keyboard turned on... I pressed the scroll-lock key, but nothing happened, the light remained. I opened a terminal and ran "top" to find what processes were running when I was automatically logged out. I logged back and checked the logs and found the following entries in my auth.log:
Code:
CRON[2971]: pam_unix(cron:session): session opened for user root by (uid=0)
CRON[2971]: pam_unix(cron:session): session closed for user root
[code]....
Failed login attempts are logged to syslog with the user id or login id set to UNKNOWN_USER or UNSET.Anybody know if this is configurable. I would rather it just pass the actual id that the user used. Doesn't matter if it exist or not, just want to know if someone is guessing at user names and what those user names are
View 1 Replies View RelatedI'm trying to change that:
Code:
modprobe ipt_recent ip_list_tot=500
But it's not work Can I change menually in /sys/module/xt_recent/parameters/ip_list_tot Or there is other way
I am unable to find any ldap.conf parameter or pam.d/system-auth setting from where i can restrict the LDAP users having uidNumber less than a particular number, say 500 to login into the system.I am using OpenLDAP server and tried pam_max_uid 500 in ldap.conf but it didn't work.
View 2 Replies View RelatedHow do you configure proftpd so that once a user has failed to login and reached the MaxLoginAttempts. That they can not retry logging in for another 4 hours ?
View 6 Replies View RelatedI got the following modprobe scripts modprobe -k -q streams what does the -k parameter mean?. is it exist in older modprobe? I don't see -k parameter in recent modprobe.
View 1 Replies View RelatedI want to run a command on startup (Via startup applications) that has to wait for another program to run first.I don't seem to be able to use sleep to delay the command as it is stored in a .desktop file.How do I make it run later, preferably without having to create a script just for this one command.Also, how do I make the system start with compiz? Change "/desktop/gnome/session/required_components/windowmanager" ? Or do it the clean way by (Somehow) configuring gnome to use compiz?
View 3 Replies View RelatedIm experiencing a long delay before the gdm login screen appears in debian jessie with kernel 4.4 and also with the distro kernel 3.16
there in the Xorg.log
Code: Select allX.Org X Server 1.16.4
Release Date: 2014-12-20
[ 22.516] X Protocol Version 11, Revision 0
[ 22.516] Build Operating System: Linux 3.16.0-4-amd64 x86_64 Debian
[code]...
they claim to have fixed the issue after kernel 3.4 so i must have some missconfiguration causing this loop.
When I log into my ubuntu 10.04 after booting my computer, I receive a 30-40 second lag before I can actually log in. During this lag, I can move the cursor and the login background is shown, but the computer seems to be doing nothing. It is as if there is a sleep command before I even log in. I am using a Sager 2096 computer but I got this computer for free and it did not come with the specs. I had installed a 64-bit version of Ubuntu because this computer has a 64-bit architecture. However, whenever I install software, it always has to install the x86 version because the x64 is "not supported." Perhaps I have a mix of 32 and 64 bit programs and that is what is screwing it up?
View 3 Replies View RelatedWhenever I login to a certain server using SSH I get a very long delay before a prompt appears. Everything I looked up on this issue says that it's a DNS issue and that I should disable reverse DNS lookups on the server.
But, the remote server is a shared webhosting server. I e-mailed the sysadmins but they say they have no DNS issue and that they won't change the server configuration. So, how can I fix this issue from my side (client side)? I have a static IP address and a hostname that points to it.
Right after I type in my username and password and hear the usual login sound I have to wait about 15 to 20 seconds to get the X desktop. The system load average monitor is at its max and starts to become lower.If I log out and in again I dont get that delay. It only happens with logging in after a reboot/power on.I tried to open a console (Ctrl+Alt+F1) before I log in, move back to X and login then jump to console and use htop to see what's eating up my resources during that time with no luck. Everything seems to be normal.
View 3 Replies View RelatedI have F10 installed on my laptop with disk encryption enabled. When I boot the machine I get a "Password:" request on screen but can't start typing for 30 seconds or more.Presumably the OS is not ready. This means I have to wait at the keyboard tapping a key until I see asterix. It's a waste of time and frankly a bit clunky for a modern OS. How can I change the behaviour so that the "Password:" request only appears when I can actually type?
View 4 Replies View RelatedI've recently installed ubuntu 10.10 again and when I boot it starts in ffy1 console, in which I need to login.After the login in console version it will display the error after this it takes ~30 seconds till the normal graphical login screen I've searching the forum about this problem but haven't encountered the solution anywhere nor the problem itself.And yes I do see the disk errors but that would be during the login on the graphical screen.
View 3 Replies View RelatedOn a Debian 5.0.8 I have a problem with OpenSSH server (sshd): when connecting to it from another host there is always a 10 seconds delay before sshd gives login prompt to the client. After the connection is established the communication goes on without any interruption. This long delay started to happen a few months ago and sshd_config was not changed at that time.
Here is a short description of the conversation between the putty client (on MS Windows) and sshd:
- putty client starts connection to sshd
- 10 s delay
- sshd returns "login as:"
- user types username in putty window
- sshd returns "password:"
- user types password in putty window
- sshd returns MotD and shell prompt
Here is a short description of the conversation between the OpenSSH client (on a Debian 6) and sshd:
- client does "ssh user@host.foo.bar"
- 10 s delay
- sshd returns "Password:"
- user types password
- sshd returns MotD and shell prompt
I tried connecting from:
- local host - NO DELAY
- a host on the same subnet - delay exists
- a host on another subnet - delay exists
I've found the following suggestions but to no avail (of course I restarted sshd after changing its configuration):
- on server put "UseDNS no" at the end of /etc/ssh/sshd_config
- in /etc/hosts on the server define mappings between IP addresses and host names for the ssh clients
- on client use "GSSAPIAuthentication no" in /etc/ssh/ssh_config
Here are some logs and configurations:
After GRUB 2 comes up (I'm running Ubuntu 10.10) and I choose the OS to boot, there is about a 5 second delay where nothing appears to happen after I make the selection -- no disk activity. It happens consistently every time I boot. Again, this is after I choose the OS to boot, so it shouldn't have anything to do with the standard delay to allow me to choose the appropriate OS.Is there a good way to troubleshoot this and determine what is causing the delay?
View 4 Replies View Relatedwent through the tutorial on FedoraSolved for securing ssh. I installed denyhosts with yum and then tried to run it with the command line command"sudo /etc/init.d/denyhosts start" but I got the message"Job Failed. See system logs and 'systemctl status' for details [FAILED]"and in the application "services" in the applications menu,t shows an exclamation warning and says that "This unit has failed"
View 1 Replies View RelatedI just focus on the filter table:
First : What is the meaning of the "opt" parameter?
Second : What is the aim of the "destination" for the INPUT chain ? The destination must be the ip of machine, isn't it ? I must put anywhere (except if my ip is fixed), right?
Third : The same : What is the aim of "source" for the OUTPUT chain?
Fourth : What are the following rules?
Code:
target prot opt in out source destination
ACCEPT udp -- eth1 any anywhere anywhere udp dpt:bootps
ACCEPT tcp -- eth1 any anywhere anywhere tcp dpt:bootps
ACCEPT udp -- eth1 any anywhere anywhere udp dpt:domain
ACCEPT tcp -- eth1 any anywhere anywhere tcp dpt:domain
eth1 is my wireless interface and I use it on a local network, my comp being the gateway.I suppose that "domain" is linked to the dns and it must be open if the devices on the lan specified my comp as their dns, right? But what about bootps?
I'm running Ubuntu Lucid Lynx (kernel 2.6.31-24). After booting, when the "pink screen" comes up, the login dialog doesn't appear for about a minute, and the KB and mouse are frozen. It takes another 30 seconds before the KB and mouse unfreeze and I can type in my password.
View 3 Replies View Relatedubuntu 9.10 login panel is worse with respect to ubuntu 8 since now all the users with names are shown without a way to hide them!Why don't keep the old way at least as an option?
View 5 Replies View Relatedi updated both browsers i have and lost my secure log-in pages (no padlocks showing ) concerning different Web mail accounts.Just before i did these updates i checked an unrelated thing on-line regarding my sound card of which i kept a copy of and got this message below :
!!ALSA/HDA dmesg
!!------------------
[ 12.762633] cfg80211: Calling CRDA for country: AM
[code]....
I'm seeing really bad user login format under a standard installation and am wondering why ubuntu does this as default. I have noticed that the graphical login for gnome sizes itself to accommodate a user's exact password length. This indicates to me that somewhere on the unencrypted part of a standard installation with user encryption contains at least some indication of the content of the password length which seems a security flaw even if not a complete hole, it majorly reduces the number of attempts a cracker would have to cycle through.
And that's assuming that *only* the length is contained. Furthermore it seems that it would be MUCH better to simply display the number of characters entered into the pw field and allowing the gui to expand itself from an fixed size as the field is filled out so the the user still receives visual feedback for entering characters. Either a simple character count display should be entered into the field or a 10 dot to new line so that one can visually quickly count the number enter by multiplying from a 10base graphical observation.
just migrated to Lucid from Jaunty and noticed that the login startup screen looks more like windoze (shows all authorized users).One of the endearing security checks with Unix was that if you had access to a console you had guess both userid AND password - the system wouldn't tell you which was wrong.I feel that we have lowered security by making the list of authorized users visible on a console. Is there any way to turn it off and force users to enter both userid and password?
View 4 Replies View RelatedWhenever I login as root, an e-mail with the subject "Security information" is sent outwhere the e-mail address for this message is configured? I need to change it (or perhaps disable it).
View 9 Replies View RelatedI have found this link "Login Failed" message when logging in through RDP
I am suffering from exactly these symptoms. Can anyone suggest what the likely cause is? How would that bug/solution relate to my environment: openSUSE 11.3/xrdp 0.4.1-85.1?
And lastly, how can I find out if the update implied under "Additional Information" has happened?
I found a problem where I least expected it. I cannot use skype on my ubuntu hardy. I install it without a problem, but when I try to login it says: login failed, multiple instances may exist.
After some googleing and several different installations I am still no closer to finding out what is wrong.
If there is anyone with the solution please let me know, and if you need any extra info or command output I will send them asap.