Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2024-10-01 08:25:45 -04:00
Code Issues Packages Projects Releases Wiki Activity
d17e25272b
security-misc/usr/share/pam-configs/tally2-security-misc
Patrick Schleizer d17e25272b
effectively (not directly) add "required pam_tally2.so debug" to /etc/pam.d/common-account 
This is required because otherwise something like "sudo bash" would count as a
failed login for pam_tally2 even though it was successful.

https://bugzilla.redhat.com/show_bug.cgi?id=707660

https://forums.whonix.org/t/restrict-root-access/7658
2019-08-10 06:06:39 -04:00

10 lines
253 B
Plaintext
Raw Blame History

Name: lock accounts after 5 failed authentication attempts (by package security-misc)
Default: yes
Priority: 260
Auth-Type: Primary
Auth:
required pam_tally2.so deny=5 onerr=fail audit debug
Account-Type: Primary
Account:
required pam_tally2.so debug
Reference in New Issue View Git Blame Copy Permalink