mirror of
git://slackware.nl/current.git
synced 2024-12-28 09:59:53 +01:00
0959f2bb54
a/pam-1.4.0-x86_64-1.txz: Upgraded. IMPORTANT NOTE: This update removes the pam_cracklib and pam_tally2 modules. None of our current configuration files in /etc/pam.d/ use either of those, but if the configuration files on your machine do you'll need to comment out or remove those lines, otherwise you may experience login failures. a/shadow-4.8.1-x86_64-9.txz: Rebuilt. /etc/pam.d/system-auth: prefix lines that call pam_gnome_keyring.so with '-' to avoid spamming the logs about failures. a/sysvinit-scripts-2.1-noarch-32.txz: Rebuilt. rc.S: create /var/run/faillock directory for pam_faillock(8). a/util-linux-2.35.2-x86_64-2.txz: Rebuilt. /etc/pam.d/login: change the example for locking an account for too many failed login attempts to use pam_faillock instead of pam_tally2. l/imagemagick-7.0.10_19-x86_64-1.txz: Upgraded. l/libzip-1.7.1-x86_64-1.txz: Upgraded. n/openssh-8.3p1-x86_64-2.txz: Rebuilt. /etc/pam.d/sshd: change the example for locking an account for too many failed login attempts to use pam_faillock instead of pam_tally2.
22 lines
1.2 KiB
Text
22 lines
1.2 KiB
Text
#%PAM-1.0
|
|
# pam_securetty.so is commented out since sshd already does a good job of
|
|
# protecting itself. You may uncomment it if you like, but then you may
|
|
# need to add additional consoles to /etc/securetty if you want to allow
|
|
# root logins on them, such as: ssh, pts/0, :0, etc
|
|
#auth required pam_securetty.so
|
|
# When using pam_faillock, print a message to the user if the account is
|
|
# locked. This lets the user know what is going on, but it also potentially
|
|
# gives additional information to attackers:
|
|
#auth requisite pam_faillock.so preauth
|
|
auth include system-auth
|
|
# To set a limit on failed authentications, the pam_faillock module
|
|
# can be enabled. See pam_faillock(8) for more information.
|
|
#auth [default=die] pam_faillock.so authfail
|
|
#auth sufficient pam_faillock.so authsucc
|
|
auth include postlogin
|
|
account required pam_nologin.so
|
|
account include system-auth
|
|
password include system-auth
|
|
session include system-auth
|
|
session include postlogin
|
|
session required pam_loginuid.so
|