Patrick Schleizer
|
d17e25272b
|
effectively (not directly) add "required pam_tally2.so debug" to /etc/pam.d/common-account
This is required because otherwise something like "sudo bash" would count as a
failed login for pam_tally2 even though it was successful.
https://bugzilla.redhat.com/show_bug.cgi?id=707660
https://forums.whonix.org/t/restrict-root-access/7658
|
2019-08-10 06:06:39 -04:00 |
|
Patrick Schleizer
|
0f896a9d8d
|
add onerr=fail audit to pam_tally2
|
2019-08-10 06:05:37 -04:00 |
|
Patrick Schleizer
|
a703865dcf
|
bumped changelog version
|
2019-08-01 12:02:41 +00:00 |
|
Patrick Schleizer
|
1fe3036a49
|
readme
|
2019-08-01 11:13:43 +00:00 |
|
Patrick Schleizer
|
e076470f68
|
renamed: usr/share/pam-configs/usergroups -> usr/share/pam-configs/usergroups-security-misc
|
2019-08-01 11:04:58 +00:00 |
|
Patrick Schleizer
|
830111e99a
|
split usr/share/pam-configs/security-misc
into
usr/share/pam-configs/tally2-security-misc
usr/share/pam-configs/wheel-security-misc
|
2019-08-01 11:04:22 +00:00 |
|
Patrick Schleizer
|
5d0aec1321
|
bumped changelog version
|
2019-07-31 19:12:27 +00:00 |
|
Patrick Schleizer
|
89d32402b2
|
fix, do not use "," inside /usr/share/pam-configs files
|
2019-07-31 14:52:29 -04:00 |
|
Patrick Schleizer
|
864de10659
|
bumped changelog version
|
2019-07-31 15:17:51 +00:00 |
|
Patrick Schleizer
|
47368ae4fc
|
readme
|
2019-07-31 15:15:30 +00:00 |
|
Patrick Schleizer
|
c09fb208d1
|
bumped changelog version
|
2019-07-31 07:44:50 +00:00 |
|
Patrick Schleizer
|
ac1220e14b
|
depend on sudo so group sudo exists during postinst
|
2019-07-31 07:32:59 +00:00 |
|
Patrick Schleizer
|
09f75fb1ff
|
description
|
2019-07-31 07:32:36 +00:00 |
|
Patrick Schleizer
|
2ad087dcd9
|
description
|
2019-07-31 07:30:40 +00:00 |
|
Patrick Schleizer
|
404f597c0a
|
description
|
2019-07-31 07:29:42 +00:00 |
|
Patrick Schleizer
|
c921872016
|
description
|
2019-07-31 07:27:13 +00:00 |
|
Patrick Schleizer
|
39e1b1c5f0
|
update file path
|
2019-07-31 07:26:25 +00:00 |
|
Patrick Schleizer
|
cf90668756
|
lock user accounts after 5 failed authentication attempts using pam_tally2
|
2019-07-31 03:25:02 -04:00 |
|
Patrick Schleizer
|
3e29761560
|
debug at the end
|
2019-07-31 03:17:06 -04:00 |
|
Patrick Schleizer
|
5cdb3edb32
|
usr/share/pam-configs/wheel -> usr/share/pam-configs/security-misc
|
2019-07-31 03:16:41 -04:00 |
|
Patrick Schleizer
|
031a1c8751
|
bumped changelog version
|
2019-07-22 01:16:18 +00:00 |
|
Patrick Schleizer
|
f38f307b37
|
Merge remote-tracking branch 'origin/master'
|
2019-07-21 09:12:33 -04:00 |
|
Patrick Schleizer
|
b2582fbd4c
|
Merge pull request #26 from fepitre/fix-files
Fix files
|
2019-07-21 12:40:37 +00:00 |
|
Frédéric Pierret (fepitre)
|
077899c23d
|
Add .gitignore
|
2019-07-21 11:23:35 +02:00 |
|
Frédéric Pierret (fepitre)
|
5fbe753761
|
spec: update %files section
QubesOS/qubes-issues#1885
|
2019-07-21 11:23:26 +02:00 |
|
Patrick Schleizer
|
8c538ba318
|
bumped changelog version
|
2019-07-17 21:38:26 +00:00 |
|
Patrick Schleizer
|
1c7441ddf1
|
alias /etc/securetty -> /etc/securetty.security-misc,
|
2019-07-17 21:16:14 +00:00 |
|
Patrick Schleizer
|
940054d53f
|
bumped changelog version
|
2019-07-17 21:08:23 +00:00 |
|
Patrick Schleizer
|
08d37471d4
|
readme
|
2019-07-17 21:06:17 +00:00 |
|
Patrick Schleizer
|
c0a4a10d6b
|
description
|
2019-07-17 21:05:11 +00:00 |
|
Patrick Schleizer
|
7352b2ac31
|
description
|
2019-07-17 21:03:54 +00:00 |
|
Patrick Schleizer
|
b153e8f7df
|
fix path
|
2019-07-17 21:02:48 +00:00 |
|
Patrick Schleizer
|
4bf2360b95
|
description
|
2019-07-17 21:02:27 +00:00 |
|
Patrick Schleizer
|
9f2e300e72
|
description
|
2019-07-17 20:48:33 +00:00 |
|
Patrick Schleizer
|
d044780c04
|
description
|
2019-07-17 20:42:14 +00:00 |
|
Patrick Schleizer
|
75e5714d18
|
description
|
2019-07-17 20:40:01 +00:00 |
|
Patrick Schleizer
|
8c2f983578
|
description
|
2019-07-17 20:39:42 +00:00 |
|
Patrick Schleizer
|
2299ed041f
|
passwordless recovery / emergency console
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=802211
bc5ca2de85
https://forums.whonix.org/t/restrict-root-access/7658/46
|
2019-07-17 20:36:51 +00:00 |
|
Patrick Schleizer
|
50036b2934
|
bumped changelog version
|
2019-07-17 19:13:57 +00:00 |
|
Patrick Schleizer
|
3f9437f1ec
|
Revert "set back to default group "root" rather than group "sudo" membership required to use su"
This reverts commit 2f276cdb10 .
|
2019-07-17 14:25:19 -04:00 |
|
Patrick Schleizer
|
1b772c6a9a
|
bumped changelog version
|
2019-07-16 19:45:52 +00:00 |
|
Patrick Schleizer
|
2499ae0890
|
description
|
2019-07-16 07:28:50 -04:00 |
|
Patrick Schleizer
|
d0124b24d1
|
description
|
2019-07-16 07:27:56 -04:00 |
|
Patrick Schleizer
|
4b604bbb24
|
bumped changelog version
|
2019-07-15 13:26:47 +00:00 |
|
Patrick Schleizer
|
f21fa8d95d
|
readme
|
2019-07-15 13:03:30 +00:00 |
|
Patrick Schleizer
|
5c741d2149
|
shuffle
|
2019-07-15 13:02:30 +00:00 |
|
Patrick Schleizer
|
d247b7534b
|
sort description by categories
|
2019-07-15 13:01:46 +00:00 |
|
Patrick Schleizer
|
168ea5a660
|
shuffle
|
2019-07-15 08:48:17 -04:00 |
|
Patrick Schleizer
|
2f276cdb10
|
set back to default group "root" rather than group "sudo" membership required to use su
since root login will be locked by default anyhow
Thanks to @madaidan for providing the rationale!
https://forums.whonix.org/t/restrict-root-access/7658/42
|
2019-07-15 08:44:28 -04:00 |
|
Patrick Schleizer
|
6d1e8ac9a4
|
description
|
2019-07-14 11:16:49 +00:00 |
|