Date: Thu, 30 Oct 2003 13:35:46 -0500 From: Brian Reichert <reichert@numachi.com> To: Michael Carlson <carlson39@llnl.gov> Cc: freebsd-security@freebsd.org Subject: Re: your mail Message-ID: <20031030183546.GE91120@numachi.com> In-Reply-To: <5.1.1.6.0.20031030084448.03831060@popcorn.llnl.gov> References: <5.1.1.6.0.20031030084448.03831060@popcorn.llnl.gov>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Oct 30, 2003 at 08:45:03AM -0800, Michael Carlson wrote: > > I have asked this before in -questions but due to a odd security > requirement, I need the option to auto lock a normal user's account > (root and those in the wheel group must be excluded) after let say, 3, > login failures. I know this can cause a DoS issue but I HAVE to have > the option of doing it in FreeBSD. I don't much experience with pam(8), but there is some mention of 'sessions' in the manpage: session - this group of tasks cover things that should be done prior to a service being given and after it is with- drawn. Such tasks include the maintenance of audit trails and the mounting of the user's home directory. The session management group is important as it provides both an open- ing and closing hook for modules to affect the services available to a user. Perhaps that's a place to introduce a hook for what you need... > Any info is appreciated > Thanks. > Mike C > carlson39@llnl.gov -- Brian 'you Bastard' Reichert <reichert@numachi.com> 37 Crystal Ave. #303 Daytime number: (603) 434-6842 Derry NH 03038-1713 USA BSD admin/developer at large
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031030183546.GE91120>