OT: Capturing failed login attempts
Bill Campbell
bill at celestial.com
Mon Sep 12 14:27:22 PDT 2005
On Mon, Sep 12, 2005, Lerebours, Jose wrote:
>Bill posted:
>
>> -----Original Message-----
>> From: filepro-list-bounces at lists.celestial.com
>> [mailto:filepro-list-bounces at lists.celestial.com]On Behalf Of Bill
>> Campbell
>> Sent: Monday, September 12, 2005 4:00 PM
>> To: Fplist (E-mail)
>> Subject: Re: OT: Capturing failed login attempts
>>
>>
>> On Mon, Sep 12, 2005, Lerebours, Jose wrote:
>> >Using SCO 5.0.6
>> >
>> >Q. Where can I go to check for failed login attempts?
>> >Q. How can I make sure user does not use same passwd?
>> >Q. Is there a way to warn an user of password nearing
>> > expiration?
>> >
>> >
>> >If I `grep` "failed" off /usr/adm/syslog, all I get is
>> >the IP address where the login was attempted. I need
>> >to know the user ID that failed.
>>
>> If you're using openssh for secure shell logins, you will see
>> failed login
>> attempts in the logs, complete with the login names tried.
>>
>> NOTE: The openssh on the server is doing the logins, it
>> doesn't require
>> anything on the clients connecting.
>>
>
>Bill,
>
>Shamefully, I must confess that I am not using ssh but an
>straight TelNet. The unit is within an intranet and only
>accessible to PCs inside the firewall.
We use ssh for all our intercomputer traffic (an on-computer for
that matter), largely because it's far easier to run X11 clients
under ssh than to deal with the DISPLAY variables and xhosts.
The fact that it's secure is almost secondary to that for our
in-house work. On the other hand, it builds secure habits so
it's hard to forget to use ssh when dealing with remote systems.
Bill
--
INTERNET: bill at Celestial.COM Bill Campbell; Celestial Software LLC
UUCP: camco!bill PO Box 820; 6641 E. Mercer Way
FAX: (206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676
URL: http://www.celestial.com/
``Never blame a legislative body for not doing something. When they do
nothing, that don't hurt anybody. When they do something is when they
become dangerous.''
Will Rogers
More information about the Filepro-list
mailing list