login_limit count bumped without failure

From: roy gordon (royg_at_semantic.com)
Date: 01/23/04

  • Next message: Scott Packard: "Re: OpenSSH 3.7.1p1 & PAM authentication on Solaris 8" 
    Date: 22 Jan 2004 16:27:33 -0800

    login_limits are enabled. user ssh's to server machine. When the user
    is asked for their passwd, but before they enter ANYTHING, we see on
    the server that the login_limit failure count has already been
    incremented by one.

    This behavior is seen whether or not UsePrivilegeSeparation is set.

    This behavior does not occur with telnet.

    Any ideas?

    Thanks

    Roy

    (setup: openssh-3.7.1p2, Solaris 5.8. Believe it was seen also with
    openssh-3.6.1p2.)

    ==> Server
    wallace# ./login_limit | grep rgordon
    rgordon: 0 Thu Jan 22 16:13:10 2004

    ==> Client

    nepal<rgordon>39: ssh wallace
    rgordon@wallace's password:

    ==> Server (before user has entered their passwd)
    wallace# !!
    ./login_limit | grep rgordon
             rgordon: 1 Thu Jan 22 16:15:01 2004
    wallace#

  • Next message: Scott Packard: "Re: OpenSSH 3.7.1p1 & PAM authentication on Solaris 8"

    Relevant Pages

    • [fw-wiz] Re: General question, was: question on securing out-of-band management
      ... things for our "management network" ... Each with a different login, each with a different passwd, each with a different way of resetting expired/locked passwds and such. ... Most often, and here's the catch, we have a zone for our console access in say czone, all admined on avocents, course, the avocents have their own quirks, like there is limited cut and paste, and if an app is poorly setup and scrolls it;s log info to the console it can make it so the console is totally unavailable. ... so depending, I might fnd it easier to maintain a system from one of these limited console devices, rather then getting the direct access tot he server in question due to esap/vpn madness issues. ...
      (Firewall-Wizards)
    • Re: NIS+ User addtion
      ... > when my server was Solaris 2.6. ... >> Use NEW passwd for login and OLD passwd for keylogin. ... >> Make sure you do these on your Master server. ... choose new password two times for the guest account ...
      (comp.unix.solaris)
    • bash-2.05# ldaplist passwd ldaplist: Object not found (LDAP ERROR (1): Operations error.)
      ... On a Solaris 9 LDAP client bound to a Sun ONE Directory Server 5.2 the ... ldaplist command can not list all tables. ... passwd" returns only /etc/passwd but "getent passwd user" lists the ...
      (comp.unix.solaris)
    • auto.home problem
      ... I'm setting up a redhat cluster, using NIS to share passwd and auto.home ... The server works fine but the clients are giving me this problem ... cannot find username for UID 3356 ...
      (linux.redhat)
    • Re: Strange CONNECT entries in apache logs
      ... This is what it sends when pasting ... smmsp and mysql are not enabled/installed on that server. ... At other times this information is handled by lookupd. ...
      (Incidents)