What version of unix? We use Solaris, and handle all of this at the OS level in /etc/profile prior to prior to exec'ing uv in the user's /.profile. If the user's ip address or host name had been recorded in a file. If the ip/host is in the file we display a message containing a phone number for the user to call for help, then exit after a 20 second sleep. We write the login failure to two files. We use syslog.conf to push the auth.err level messages to a file that gets cleaned each night. This is the file we validate against. Every night a cron job runs to clear the file, releasing the locks that were set during the day.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Steve Ferries Sent: Monday, July 10, 2006 1:40 PM To: [email protected] Subject: [U2] UV calling chuser from application HI All, We want to lock out a user's UNIX login id, after three failed attempts into our application. We are using the following command from the application that monitors the fail/success of the login attempt at the application level. EXECUTE 'SH -c "chuser account_locked=true ':@logname:'"' This command works great, but then every user needs to be a member of group 'security', or give everyone access to execute the command, both of which are a no-no. Is there a way to give the application access rights to group security? Is there another way of doing this? Thanks in advance! Steve Ferries Chief Cook, Bottle Washer Total Credit Recovery Limited ------- u2-users mailing list [email protected] To unsubscribe please visit http://listserver.u2ug.org/ ------- u2-users mailing list [email protected] To unsubscribe please visit http://listserver.u2ug.org/
