Hi, in order to make bruteforce password attacks more difficult, I'd like to implement a mechanism which locks an user account after a certain number of failed login attempts for a limited period of 15 minutes. Any solutions? I know that account locking can be done with pam_tally but haven't found any information how to limit it only to a period of time. Regards, Thomas --- Thomas Schmitz Tel: +41-1-793 15 55 SIC Internet Consulting Fax: +41-1-793 15 56 Feldguetliweg 83 mailto: [EMAIL PROTECTED] CH-8706 Feldmeilen http://www.web-consulting.ch Switzerland _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
