Sorry to spam the board with all my Solaris 2.6 questions (I just found this forum). My most recent problem is that not ALL failed log-ins are getting logged in /var/log/authlog. It seems to work fine for the "su" command from a non-root user, but the actual "login" command or a desktop login will not be logged.
To get this to work (in that new-fangled Solaris 8), I simply add this line to /etc/syslog.conf:
I have also made sure these log files exists with the correct ownership and permissions. I have run /etc/security/bsmconv and restarted. I'm not exactly sure what every file does (it's mainly a conglomerate of suggestions I've found on the "internets") and seems to work fine in Solaris 8.
Does anyone have any suggestions to get ALL failed logins logging to /var/log/authlog?
hi, can someone tell me " how to reset failed login in solaris 8.0"
a user is not able to login and inspite of my changing password cannot.
I believe it must be because the user tried many attempts.
how do i reset the failed login for the user.
Thanks!
karthik (2 Replies)
Hi,
Would appreciate it if someone could shed me some light here as I'm yet to find any related information in this forum with regards to my problem.
Basically, I would like to display "Last Unsuccessful login" information when a user successfully logs-in to the system. I can't seem to find... (2 Replies)
Hi all,
i have generated a pair of keys so that i can login via SSH without entering my password.
I am using putty to login. After putting the public key on the server,then logging through putty, i get the message "Server refused our key" on screen. At the same time, /var/log/secure is... (3 Replies)
Hi guys, Can you please help me.
I have SUN V100 server running solaris 8.
I also have a Redhat Linux 6.2 machine and a windows XP machine on the network.
I'm trying to copy files from the Linux and XP machines to the V100 server.
When I try to ftp to the solaris machine, I'm challenged... (2 Replies)
Hi,
I managed to install OpenImsCore and XLite, and then I tried to log in using Bob and Alice usernames, but it doesn't work.
I am using Ubuntu 8.04 = Kubuntu.
I tried everything I found on Google (changing security settings in HSS and scscf to Digest-MD5 was the last thing I did), but... (0 Replies)
I have an application (EXE file) in a Windows 2003 server. Through a DOS batch script, I called that application file using UNC path and working fine when locally login. But got failed when I tried the same batch script on remote login. The login id has been provided all the below rights:
- Log on... (0 Replies)
Dear Unix Team,
This is sudhansu once again. I need some tips on below issue.
Sometimes we got calls from customer that their console got hangged means they are not able to access the server through console ip.
in that case "resetsc -y" will resolve the issue.
2. But couple of days... (2 Replies)
When i finished installation the Redhat Enterprise Linux 6.2, and login to the system, I can't login although username: root and Password correct. I install on the Hp Blade Server. I don't know why.
How to fix this error? who can help me? :confused:
Thanks! (3 Replies)
Below is the code.
I need to login into the router if the 1st set of credentials are correct..
if wrong... then it has to check with 2nd set of credentials..
=> if the credentials are correct... then it should continue..
=> if the credentials are wrong(should not check for 2nd time... then... (0 Replies)
Hello,
I need some help with network/firewall settings in Solaris 11.3.
What I want to achieve is that if someone tries to log in to my server and fails I want that IP to be banned for some time.
So if a computer/user tries to login to my ssh-server on a specified port (normally 22) and... (2 Replies)
Discussion started by: Zorken
2 Replies
LEARN ABOUT REDHAT
faillog
FAILLOG(8) System Manager's Manual FAILLOG(8)NAME
faillog - examine faillog and set login failure limits
SYNOPSIS
faillog [-u login-name] [-a] [-t days]
[-m max] [-pr]
DESCRIPTION
faillog formats the contents of the failure log, /var/log/faillog, and maintains failure counts and limits. The order of the arguments to
faillog is significant. Each argument is processed immediately in the order given.
The -p flag causes failure entries to be printed in UID order. Entering -u login-name flag will cause the failure record for login-name
only to be printed. Entering -t days will cause only the failures more recent than days to be printed. The -t flag overrides the use of
-u. The -a flag causes all users to be selected. When used with the -p flag, this option selects all users who have ever had a login
failure. It is meaningless with the -r flag.
The -r flag is used to reset the count of login failures. Write access to /var/log/faillog is required for this option. Entering -u
login-name will cause only the failure count for login-name to be reset.
The -m flag is used to set the maximum number of login failures before the account is disabled. Write access to /var/log/faillog is
required for this option. Entering -m max will cause all accounts to be disabled after max failed logins occur. This may be modified with
-u login-name to limit this function to login-name only. Selecting a max value of 0 has the effect of not placing a limit on the number of
failed logins. The maximum failure count should always be 0 for root to prevent a denial of services attack against the system.
Options may be combined in virtually any fashion. Each -p, -r, and -m option will cause immediate execution using any -u or -t modifier.
CAVEATS
faillog only prints out users with no successful login since the last failure. To print out a user who has had a successful login since
their last failure, you must explicitly request the user with the -u flag, or print out all users with the -a flag.
Some systems may replace /var/log with /var/adm or /usr/adm.
FILES
/var/log/faillog - failure logging file
SEE ALSO login(1), faillog(5)AUTHOR
Julianne Frances Haugh (jockgrrl@ix.netcom.com)
FAILLOG(8)