Login functionality

Anderson Lizardo lizardo at linuxfromscratch.org
Wed Feb 18 11:13:15 PST 2004


On Qua, 18 Fev 2004 20:39:33 +0200, Tarek W. wrote:
> how bout logging the username only if the username matches an entry in
> /etc/passwd. that way, UNKNOWN is a more narrow array of possibilities,
> either it's somebody's pass or an attack or a mistyped username (the
> latter can be dismissed by the frequency of log entries, the more log
> entries, the more probability is was an attack)

AFAIK, this is the default behaviour. See:

Feb 16 11:03:21 anderson login[246]: invalid password for `lizardo'  on
`tty1'
Feb 16 11:03:37 anderson login[246]: invalid password for `UNKNOWN'  on
`tty1'

-- 
Anderson Lizardo
lizardo at linuxfromscratch.org
http://www.linuxfromscratch.org/



More information about the hlfs-dev mailing list