On Thu, 24 Jul 2003 10:41 pm, Bill Thompson wrote: > Hello, > > I've been looking through the FAQ and the list archives for some kind of > method to have freeradius disable authentications for users after a number > of failed logins. The only reference I found was a message from 2002 > saying that it couldn't be done. Is that still the case? Does anyone have > an alternate method of blocking accounts automatically?
If you are authenticating to PAM on linux this should be easy to do as PAM can do this. It's nothing to do with RADIUS per se, for instance you could have a limit of 3 authentication tries to lock an account and it could work like this. User is already connected to the net and tries the wrong passwd while checking POP mail. - Count 1 User then tries to login with webmail with the wrong passwd. - Count 2 User is disconnected from dialup and tries to redial with wrong passwd (Dialup is obviously Authed using RADIUS). This would be Count 3 and the account would be locked.. PAM is you friend. PAM is powerfull.. Learn PAM... -- Peter Nixon http://www.peternixon.net/ PGP Key: http://www.peternixon.net/public.asc - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
