Militantly FREE software support.
Militantly FREE software support.
NavigationUser loginSpam?See spam posts on this site? If so, please don't reply to the spam! Instead, just report the URL to the webmaster. |
console login : number of access failuresHi lists, 1- by default on our Debian system after a successful login through a But what about the root user ? That number is "correct" unless no one 2 - by default whenever I press CTRL-D to log out as a non root user the thank you for your attention, I appreciate suggestions and opinions ;) saluti, daniele p.s. copy of this message has been sent also to debian-laptop list -- Bookmark/Search this post with: 
|
• Debian Weekly News - Essential reading for any Debian fan. • Documentation - Debian's own authoritative documentation, including installation docs. • FAQ - Got questions about Debian GNU/Linux? • From Windows to Debian - Tips for converting from Windows to Debian GNU/Linux • Package of the Day. • Security - Security information and alerts! • Bug System - Bug tracking and instructions on reporting bugs. • CD Images - Where/how to get Debian GNU/Linux CD images. • Mailing List Subscription - Dozens of Debian-specific support mailing lists! • Mailing List Archives - Searchable archives of Debian's mailing lists. • Free Software Guidelines - Learn Debian's idea of what "free" software really is. • Package Listings - A very valuable tool: searchable, integrated with bug reports. • Apt-Get Sources - Sources for *.debs which are not official Debian packages. • Backports - Unofficial new software packages that have been "back-ported" to work with the Debian stable/official release. • Developer's Corner - Info about the people behind Debian, policies, and how to package *.deb files.
console login : number of access failures
On Wed, Nov 28, 2007 at 02:18:23PM +0100, daniele pendenza wrote:
> 1- by default on our Debian system after a successful login through a
> tty we are presented with the number of failures (unsuccesful logins)
> that took place before using the same login name.For a non root user
> this number is correct.
>
> But what about the root user ? That number is "correct" unless no one
> tried to do "su logins" (login using the command su).
> Do you think that su-logins must be considered as "general logins" and
> then the super user must know how many unsuccessful "su-logins" took
> place ? And what about the date and time of the last root login ? :-)
> Well, as a solution one could forbid the "su-login" but sometimes that
> command can be useful.
I have pam set up so that only members of group adm can do su. I also
have my logchecker email me auth failures. Since root should never log
in directly (except at single-user), root wouldn't normally see such
login notices anyway.
>
> 2 - by default whenever I press CTRL-D to log out as a non root user the
> screen is cleaned ... whenever I press CTRL-D to log out as a root user
> the screen is not cleaned - and maybe a non root user can see what the
> root did before ! Why did they choose this behavior ??
>
So look in the user's .bash_logout and put the appropriate entry in
root's .bash_logout.
Doug.
--