Allow configurable amount of attempts at login:

CyberNinjas / pam_aad

Azure Active Directory PAM Module

GNU General Public License v3.0

55 stars 19 forks source link

Allow configurable amount of attempts at login: #2

Closed SJCaldwell closed 5 years ago

SJCaldwell commented 7 years ago

How many attempts does a user get to have a successful login before they are rejected?

Debian defaults to 3, I believe, and then will terminate the connection.

UPDATE: standard unix authentication uses 3. The pam module allows 6 currently, without my having set any options in-particular.

Jnchi commented 5 years ago

This module maintains a count of attempted accesses, can reset count on success, can deny access if too many attempts fail. --pam_tally2 - login counter (tallying) module

Update:

This can also be configured in OpenSSH via /etc/ssh/sshd_config:

StrictModes yes
MaxAuthTries 3

# Other helpful options
#MaxSessions 2
#LoginGraceTime 2m

No need to reinvent this functionality, closing.