Hi list, I was wondering if account lockout after n failed password attempts was ever successfully implemented with MIT Kerberos?
I know this was discussed several years ago (see: http://mailman.mit.edu/pipermail/kerberos/2007-December/012705.html). I haven't seen any responses more current than that. It looks like an inherent design problem because with multiple kdc servers there is no way to keep a centralized count of failed login attempts. Btw, does anyone know how Microsoft got around this problem (assuming they did so), as they do offer account lockout after n failed login attempts? Thanks, -- Steve Glasser [email protected] ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
