From cf906687561acee7f61fdf100b801d670a74a94f Mon Sep 17 00:00:00 2001 From: Patrick Schleizer Date: Wed, 31 Jul 2019 03:25:02 -0400 Subject: [PATCH] lock user accounts after 5 failed authentication attempts using pam_tally2 --- usr/share/pam-configs/security-misc | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/usr/share/pam-configs/security-misc b/usr/share/pam-configs/security-misc index cbb1de9..30b0df4 100644 --- a/usr/share/pam-configs/security-misc +++ b/usr/share/pam-configs/security-misc @@ -1,6 +1,7 @@ -Name: group sudo membership required to use su (by package security-misc) +Name: group sudo membership required to use su, lock accounts after 5 failed authentication attempts (by package security-misc) Default: yes Priority: 260 Auth-Type: Primary Auth: required pam_wheel.so group=sudo debug + required pam_tally2.so deny=5 debug