account lock on failed login

From: Larry (surfunbear_at_yahoo.com)
Date: 06/10/04

Next message: all mail refused: "Re: account lock on failed login"

Previous message: swim learning: "Re: Is there a unix command to display unix user account expiry, inactive expiry"
Next in thread: all mail refused: "Re: account lock on failed login"
Reply: all mail refused: "Re: account lock on failed login"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 10 Jun 2004 14:29:35 -0700

Here is the question,

If several failed attempts to login to an account
occur, the security auditors want the account to be locked
so future logins can't occur. This poses a problem
however as critical automated processes run using that
account and it's sort of a risk that if someone accidentaly
tried to log in and failed after 3 attempts or something,
those processes won't run. We can't use
a different account. Someone proposed that something would
automaticaly unlock the account after so many minutes or hours
but apparently that defeats the purpose. Is there a better solution ?

Next message: all mail refused: "Re: account lock on failed login"

Previous message: swim learning: "Re: Is there a unix command to display unix user account expiry, inactive expiry"
Next in thread: all mail refused: "Re: account lock on failed login"
Reply: all mail refused: "Re: account lock on failed login"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]