- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: Log Of Failed Login Attempts?
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-14-2002 02:57 AM
тАО03-14-2002 02:57 AM
This morning a trusted server of mine running 10.20 deactivated an account due to 3 failed login attempts. As a result, scripts running ftp's using the account failed. I don't partuclarly want to increase this users number of retries to more than say 5 (starts to defeat the purpose of the server running in trusted mode). What I do want to know is where a log of failed login attempts is held so I can write a script the will mail a warning to reactivate the account before built in scripts start to fail - obvioulsy making sure these a genuine fails rather than hacks first!!
Does such a log exist?
Cheers,
Mark
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-14-2002 03:01 AM
тАО03-14-2002 03:01 AM
Solutionlogin information is stored in utmp and wtmp files in /etc and /var/adm. These files have a non- ASCII structure. Several commands like who and last read their information out of these files. See man utmp and wtmp to get information how to work with these files.
Allways stay on the bright side of life!
Peter
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-14-2002 03:03 AM
тАО03-14-2002 03:03 AM
Re: Log Of Failed Login Attempts?
You can also get ftpd to write to the syslog
Check the /etc/inetd.conf file
append -l to ftpd entry to enable logging
You can also increase this by entering -v to debug
Steve
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-14-2002 03:06 AM
тАО03-14-2002 03:06 AM
Re: Log Of Failed Login Attempts?
forgot to mention, once you have ammended the file, enter
inetd -c
to get inetd to re-read it's config file
Do not leave -v (verbose logging) enabled as it may increase your syslog.log file depending on how busy the server is
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-14-2002 03:17 AM
тАО03-14-2002 03:17 AM
Re: Log Of Failed Login Attempts?
Cheers,
Mark
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-14-2002 03:29 AM
тАО03-14-2002 03:29 AM
Re: Log Of Failed Login Attempts?
Thanks again,
Mark