Now with the move from RHEL4 where that version of openldap didn't handle shadowmax and shadowlastchange properly to RHEL5.2 -- it works correctly, I figure I'd implement -- I find a different problem in a different piece....
Anyone having problems with pam_tally and it resetting the counter after a succesful login? I have (/etc/system-auth): auth required pam_tally.so onerr=fail per_user deny=3 audit account required pam_tally.so magic_root (I can include the whole system-auth file if needed) Now, as I understand -- by default on a successful login the counter should be reset (via pam-setcred) and it is located in /var/log/faillog. However, for some reason, it does not get reset; additionally, it seems to continue counting even after the succesful login. For example, - Counter=0; - via ssh - I fail a login (counter=1 and system auto-prompts for password again); - I login correctly (now counter=2); - I log off and log back on succesfully (now counter=3); - I log off; I can no longer log on and counter contines to go up. Dan Long | KAEGAN Corporation | PDSS CCTT 407-243-3812 | [email protected] | f: 530-325-3954 _______________________________________________ rhelv5-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/rhelv5-list
