Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Maximum unsuccessful attempts in unix
Top Forums UNIX for Dummies Questions & Answers Maximum unsuccessful attempts in unix Post 302579792 by methyl on Tuesday 6th of December 2011 03:14:09 PM
Old 12-06-2011
Until we know what Operating System you have, this is guesswork. There are proprietary security mechanisms and various connection mechanisms to connect to a unix server. There is no generic answer for all "unix".

For a basic "telnet" connection (where allowed by local rules) a general answer is to read "man login" (It's specific to the machine).
The "telnet" login process is designed to be immune to brute force attack and will not accept typeahead or multiple failed passwords before getting slower and slower to respond and then dropping the connection. You will know that the unix "last" command gives a history of successful logins, but when properly configured the unix "lastb" command gives a history of unsuccessful logins (including the source IP address).

Personally I have never heard the term "blocked users" in the context of unix or Windows Systems Administration (though I can guess what it means).
I do routinely "lock" unix accounts (see "man passwd") and "disable" Microsoft Windows accounts.


Hmm. Sounds like interview questions ... or maybe awkward questions from an auditor?
Last edited by methyl; 12-06-2011 at 04:27 PM.. Reason: refining and typos and unsuccessful spelling
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Unsuccessful compilation of TOP s/w

Hi, I did the following : /usr/local/bin/gcc -DHAVE_GETOPT -DORDER -DHAVE_STRERROR -c top.c and I got these error messages : /usr/ccs/bin/as: "/var/tmp/ccZcR4Mm.s", line 1936: error: unknown opcode ".subsection" /usr/ccs/bin/as: "/var/tmp/ccZcR4Mm.s", line 1936: error: statement... (1 Reply)
Discussion started by: dawn_lwf
1 Replies

2. UNIX for Advanced & Expert Users

Maximum 3 login attempts

Hi, I notice in my Sun Solaris 8 sparc workstation, if I failed my login in the 5th time, I will be closed the connection from the host. I want to make 3 times. That is, if user fails to login with 3 attempts, he will be closed the connection. How to do it? Of course I am the admin of the... (2 Replies)
Discussion started by: champion
2 Replies

3. UNIX for Dummies Questions & Answers

user password keeps "unsuccessful attempts"

i had a user who informed that when he tried to login he got this " too many unsuccessful attepmpts" this has happened regularly and he did not forget his password. i suspect that somebody tried to change. so i did some checks. i did a last, and found that nobody uses this sipo other than... (8 Replies)
Discussion started by: yls177
8 Replies

4. UNIX for Advanced & Expert Users

Unix and the maximum number of processes under a 386 box.

Hi ! I would like to know if Unix could launch more than 8192 processes , which is the maximum number of LDTs on a 386 box. Is this done by swapping some memory on the disk ? Thanks for your answers. (0 Replies)
Discussion started by: krhamidou
0 Replies

5. UNIX for Dummies Questions & Answers

Maximum size of a file in unix

What's the maximum file size supported by unix. (3 Replies)
Discussion started by: nagalenoj
3 Replies

6. UNIX for Dummies Questions & Answers

what is the maximum length of th os-command line in Unix.

Hi All, I didn't find any thread that match this question so I hope it's not redundant. I am totally new to Unix. I want to know what is the maximum length of the os-commandline in Unix. Will it cause any problem if I run any application whose total path length is much longer than 256... (2 Replies)
Discussion started by: kumardesai
2 Replies

7. UNIX for Dummies Questions & Answers

Unix shell script for finding top ten files of maximum size

I need to write a Unix shell script which will list top 10 files in a directory tree on basis of size. i.e. first file should be the biggest in the whole directory and all its sub directories. Please suggest any ideas (10 Replies)
Discussion started by: abhilashnair
10 Replies

8. Shell Programming and Scripting

swremove unsuccessful case handling

i am using the command "swremove productname".... How can i check the unsucceful condition?.... i want to say "if unsuccessful display that message to the user and exit".... Can anu one help me??.... i am coding in this script for the first time so please dont mind... THanks (1 Reply)
Discussion started by: rag84dec
1 Replies

9. Shell Programming and Scripting

what is the maximum length of a unix shell variable which can be can passed to plsql

what is the maximum length of a unix shell variable which can be can passed to plsql variable:( (1 Reply)
Discussion started by: alokjyotibal
1 Replies

10. UNIX for Dummies Questions & Answers

How to get successful/unsuccessful FTP logs in UNIX

Hi, We have one UNIX Server (Sun Solaris), and the files coming to this server from another server. The problem is, that server is continously sending files to our server via FTP. But the observation is that some files missing in our Server but in that server it shows the files FTPed... (2 Replies)
Discussion started by: vikash.rastogi
2 Replies

LEARN ABOUT HPUX

getprpw

getprpw(1M)															       getprpw(1M)

NAME

       getprpw - display protected password database

SYNOPSIS

       parm[,parm]] username

DESCRIPTION

       displays  the  user's protected password database settings.  This command is available only to the superuser in a trusted system.  Normally
       it is only used via SAM, see sam(1M).

       uses the configuration file default if is not specified.  See nsswitch.conf(4).

   Options
       recognizes the following options.

       Specifies to get information from the local user.

       Displays the arguments supplied to
	      in raw format

       Displays the database value for the argument passed.

	      An "invalid-opt" is printed if a list of options passed to contains an invalid option. The rest of the options  will  be	processed.
	      If is specified without all parameters are displayed in the order given below.

	      Boolean values are returned as or (for system default values in

	      Numeric values are specified as positive numbers, 0, or -1.  A value of -1 indicates that the field has not been assigned a value in
	      the database.

	      Units of time are returned in number of days (>=0), although the database keeps them in seconds. This and  other	minor  differences
	      between the command parameters and the database fields are consistent with modprpw(1M).

	      The following parameters for the user can be displayed using the option.

	      They are listed below in the order shown in The database fields are fully explained in prpwd(4).

	      user uid

	      boot authorization flag

	      audit id

	      audit flag

	      minimum time between password changes

	      maximum password length

	      password expiration time

	      password lifetime

	      last successful password change time

	      last unsuccessful password change time

	      account expiration time

	      last login time interval

	      password expiration warning time

	      whether user picks password,

	      whether system generates pronounceable passwords,

	      whether password is restricted, i.e, checked for triviality,

	      NULL passwords are allowed,
			     Not recommended!

	      whether system generates passwords having characters only,

	      whether system generates passwords having letters only,

	      time of day allowed for login

	      time of last successful login

	      time of last unsuccessful login

	      tty of last successful login

	      consecutive number of unsuccessful logins so far

	      tty of last unsuccessful login

	      maximum unsuccessful login tries

	      administrator lock,
			     if on, if off, if not set.

	      returns the reason for a lockout in a "bit" valued string,
			     where 0 = condition not present, 1 is present.  The position, left to right represents:

			     1 past password lifetime
			     2 past last login time (inactive account)
			     3 past absolute account lifetime
			     4 exceeded unsuccessful login attempts
			     5 password required and a null password
			     6 admin lock
			     7 password is a *

RETURN VALUE

	      0      success
	      1      user not privileged
	      2      incorrect usage
	      3      cannot find the password file
	      4      system is not trusted

EXAMPLES

       Displays the database aging fields for user "someusr".

	      The command displays:

WARNINGS

       This command is intended for SAM use only.  It may change with each release and can not be guaranteed to be backward compatible.

       Several database fields interact with others.  The side effects of an individual change may not cause a problem till much later.

       Special meanings may apply in the following cases:

	      o      an absent field
	      o      a field without a value
	      o      a field with a zero value

       HP-UX 11i Version 3 is the last release to support trusted systems functionality.

AUTHOR

       was developed by HP.

FILES

       System Password file
       Protected Password Database
       System Defaults Database
SEE ALSO

       modprpw(1M), prpwd(4), nsswitch.conf(4).

								  TO BE OBSOLETED						       getprpw(1M)
All times are GMT -4. The time now is 11:35 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy