FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > CentOS > CentOS

 
 
LinkBack Thread Tools
 
Old 12-22-2010, 08:24 PM
bluethundr
 
Default pam account lockout duration

hey list

I'm doing a PCI audit for my company. One of the requirements is to
specify a lockout duration of 30 minutes after 6 failed login
attempts:

For a sample of system components, obtain and insp 8.5.14
rd parameters system configuration settings to verify that passwo
ed out, it are set to require that once a user account is lock
a system remains locked for a minimum of 30 minutes or until
administrator resets the account


I'm pretty sure this is a pam thing but does anyone know how this can
best be achieved?

thanks!

--
GPG me!!

gpg --keyserver pgp.mit.edu --recv-keys F186197B
_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 
Old 12-23-2010, 12:48 AM
Eero Volotinen
 
Default pam account lockout duration

see cis rhel 5.5 documentation and latest version of it for configuration examples. or use compensative controls.


is it really sampled? usually no



eero,

rhce

_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 

Thread Tools




All times are GMT. The time now is 08:07 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org