Date: Mon, 25 May 1998 00:15:06 -0700 From: Mike Smith <mike@smith.net.au> To: Philippe Regnauld <regnauld@deepo.prosa.dk> Cc: Wes Peters <wes@softweyr.com>, freebsd-security@FreeBSD.ORG Subject: Re: SKey and locked account Message-ID: <199805250715.AAA11151@antipodes.cdrom.com> In-Reply-To: Your message of "Mon, 25 May 1998 09:43:31 %2B0200." <19980525094331.20142@deepo.prosa.dk>
next in thread | previous in thread | raw e-mail | index | archive | help
> Mike Smith writes: > > > syslog(LOG_CRIT, "%s on %s", user, device); > > > > Why LOG_CRIT? I would have expected something a little lower perhaps? > > (Especially if you're using it in an ISP context...) > > > > At any rate, how do people feel about this? How about a shellscript > > version using logger(8)? > > I'd like failed logins (at least on disabled accounts) to be logged, > yes. It would also be a nice plus if logging could be limited... Limiting is a bit difficult (no state is preserved across multiple nologin invocations). You could perhaps rely on the 'last message repeat' feature in syslog... -- \\ Sometimes you're ahead, \\ Mike Smith \\ sometimes you're behind. \\ mike@smith.net.au \\ The race is long, and in the \\ msmith@freebsd.org \\ end it's only with yourself. \\ msmith@cdrom.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199805250715.AAA11151>