Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Denyhosts displaying warning message for users blocked
Top Forums UNIX for Dummies Questions & Answers Denyhosts displaying warning message for users blocked Post 302426707 by mojoman on Wednesday 2nd of June 2010 04:44:24 PM
Old 06-02-2010
Denyhosts displaying warning message for users blocked
Hi,

I have a dilemma.I am running denyhosts on one of our servers and it monitors illegal ssh/ftp loggins. I am running vsftpd.

My manager though has put an additional requirement on me. When someone is blocked my denyhosts he want an error message to be displayed: " YOUR ACCOUNT HAS BEEN DISABLED DUE TO TOO MANY UNSUCCESSFUL LOGGINS. Try again in five minutes.

Anyway to go about this?
 

8 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Displaying the processes of users

Hi guys, I'm writing a script to display all the current logged on users and the processes they're running, output to a file. The output will look similar to this: User1 (Real name not login name) PID TTY TIME CMD 3179 pts/3 00:00:00 vim User2 PID TTY TIME ... (2 Replies)
Discussion started by: olimiles
2 Replies

2. UNIX for Dummies Questions & Answers

displaying the users

how can i list the users( and only those users) who logged in more than once? thanks in advance... (1 Reply)
Discussion started by: needyourhelp
1 Replies

3. UNIX for Advanced & Expert Users

Send console message to all users and tty

Hi people, i tried to search in the forum... but didnt found the answer... Sometimes i need to send a console message to all users in all tty, like reboot or shutdown does... But i cant find how to do that. Someone know? Thanks a lot (2 Replies)
Discussion started by: gfca
2 Replies

4. UNIX for Dummies Questions & Answers

Send a massive message to the connected users

How can I send a message for all the users connected into the system at the same time? Let's say I need to reboot the server and I ask the users to save their jobs becasue the server will be rebooted? (5 Replies)
Discussion started by: agasamapetilon
5 Replies

5. Cybersecurity

Locked out of my own server by denyhosts

Sigh... I use denyhosts for security. Been great for months, but today my butterfingers have managed to lock myself out of the server. The denyhosts FAQ lists ways to edit the files to erase your IP, but...I'm locked out, so how can I edit the files? (5 Replies)
Discussion started by: dheian
5 Replies

6. Programming

Message queue is not blocked in msgsnd

Hi, I am trying to send/receive data by message queue and expecting it to be blocked on send/read for other side (at least this is my understooding ) , I am connecting message between perl<->C , perl is working as expected , but in C msgsnd and msgrcv are not waiting (blocked) untill second side... (6 Replies)
Discussion started by: alexse
6 Replies

7. Linux

Problem in displaying message on RHEL6 on EFI during PXE boot

Hi, I am doing PXE boot for RHEL6.4 on EFI and want to display custom messsage before loading vmlinuz and initrd.img, which is not working. boot server side (In case of BIOS client): In /var/lib/tftpboot/default file I am putting the message in below format: SAY hello world boot... (0 Replies)
Discussion started by: indus123
0 Replies

8. UNIX for Dummies Questions & Answers

Find Null values in Columns and fail execution by displaying error message

Hi All, I am new to shell scripting. I have a requirement as part of my job to find out null/empty values in column 2 and column 3 from a CSV file and exit the further execution of script by displaying a simple error message. I have developed a script to do this by reading various articles... (7 Replies)
Discussion started by: tpk
7 Replies

LEARN ABOUT OPENSOLARIS

sac

sac(1M) 						  System Administration Commands						   sac(1M)

NAME

       sac - service access controller

SYNOPSIS

       sac -t sanity_interval

       /usr/lib/saf/sac

DESCRIPTION

       The Service Access Controller (SAC) is the overseer of the server machine. It is started when the server machine enters multiuser mode. The
       SAC performs several important functions as explained below.

   Customizing the SAC Environment
       When sac is invoked, it first looks for the per-system configuration script /etc/saf/_sysconfig. sac interprets _sysconfig to customize its
       own  environment.  The modifications made to the SAC environment by _sysconfig are inherited by all the children of the SAC. This inherited
       environment may be modified by the children.

   Starting Port Monitors
	After it has interpreted the _sysconfig file, the sac reads its administrative file /etc/saf/_sactab. _sactab specifies which  port  moni-
       tors  are to be started. For each port monitor to be started, sac forks a child (see fork(2)) and creates a utmpx entry with the type field
       set to LOGIN_PROCESS. Each child then interprets its per-port monitor configuration script /etc/saf/pmtag/_config ,  if	the  file  exists.
       These modifications to the environment  affect the port monitor and will be inherited by all its children. Finally, the child process execs
       the port monitor, using the command found in the _sactab entry.	(See sacadm; this is the command given with the -c option  when  the  port
       monitor is added to the system.)

   Polling Port Monitors to Detect Failure
       The -t option sets the frequency with which sac polls the port monitors on the system. This time may also be thought of as half of the max-
       imum latency required to detect that a port monitor has failed and that recovery action is necessary.

   Administrative functions
       The Service Access Controller represents the administrative point of control for port monitors.	Its  administrative  tasks  are  explained
       below.

       When  queried (sacadm with either -l or -L), the Service Access Controller returns the status  of the port monitors specified, which sacadm
       prints on the standard output. A port monitor may be in one of six states:

       ENABLED	     The port monitor is currently running and is accepting connections. See sacadm(1M) with the -e option.

       DISABLED      The port monitor is currently running and is not accepting connections. See sacadm with the -d option,  and  see  NOTRUNNING,
		     below.

       STARTING      The port monitor is in the process of starting up. STARTING is an intermediate state  on the way to ENABLED or DISABLED.

       FAILED	     The port monitor was unable to start and remain running.

       STOPPING      The port monitor has been manually terminated but has not completed its shutdown procedure. STOPPING is an intermediate state
		     on the way to NOTRUNNING.

       NOTRUNNING    The port monitor is not currently running. (See sacadm with -k.) This is the normal "not running" state. When a port  monitor
		     is  killed,  all ports it was monitoring are inaccessible.  It is not possible for an external user to tell whether a port is
		     not being monitored or the system is down. If the port monitor is not killed but is in the DISABLED state, it may be possible
		     (depending  on  the  port	monitor  being used) to write a message on the inaccessible port telling the user who is trying to
		     access the port that it is disabled. This is the advantage of having a DISABLED state as well as the NOTRUNNING state.

       When a port monitor terminates, the SAC removes the utmpx entry for that port monitor.

       The SAC receives all requests to enable, disable, start, or stop port monitors and  takes the appropriate action.

       The SAC is responsible for restarting port monitors that terminate. Whether or not the SAC will restart a given port monitor depends on two
       things:

	   o	  The  restart	count  specified  for  the port monitor when the port monitor was added by sacadm; this information is included in
		  /etc/saf/pmtag/_sactab.

	   o	  The number of times the port monitor has already been restarted.

SECURITY

       sac uses pam(3PAM) for session management.  The PAM configuration policy, listed through /etc/pam.conf, specifies  the  session	management
       module to be used for sac. Here is a partial pam.conf file with entries for sac using the UNIX session management module.

	 sac  session	required   pam_unix_session.so.1

       If there are no entries for the sac service, then the entries for the "other" service will be used.

OPTIONS

       -t sanity_interval    Sets the frequency (sanity_interval) with which sac polls the port monitors on the system.

FILES

       /etc/saf/_sactab

       /etc/saf/_sysconfig

       /var/adm/utmpx

       /var/saf/_log

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWcsu			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       pmadm(1M),  sacadm(1M),	fork(2)  pam(3PAM),  pam.conf(4),  attributes(5),  pam_authtok_check(5), pam_authtok_get(5), pam_authtok_store(5),
       pam_dhkeys(5), pam_passwd_auth(5), pam_unix_account(5), pam_unix_auth(5), pam_unix_session(5)

NOTES

       The pam_unix(5) module is no longer supported. Similar functionality is provided  by  pam_authtok_check(5),  pam_authtok_get(5),  pam_auth-
       tok_store(5), pam_dhkeys(5), pam_passwd_auth(5), pam_unix_account(5), pam_unix_auth(5), and pam_unix_session(5).

SunOS 5.11							    23 Oct 2002 							   sac(1M)
All times are GMT -4. The time now is 06:26 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy