https://community.hpe.com/t5/operating-system-openvms/intrusion-question/m-p/4941262#M22215 Because it changed from intruder to suspect on 14:14. So it still remembers the underlying intrussions.<BR /><BR />Wim Thu, 17 Nov 2005 02:36:51 GMT Wim Van den Wyngaert 2005-11-17T02:36:51Z https://community.hpe.com/t5/operating-system-openvms/intrusion-question/m-p/4941261#M22214 Hi experts,<BR /><BR />i tested to try failed login more than 40 times and i see that the expired time is 14:14.<BR />but when i check it on 15:00, the time became to be 16:44<BR /><BR />why???<BR /><BR />Davor&gt; sh intrusion<BR />Intrusion Type Count Expiration Source<BR />--------- ---- ----- ---------- ------<BR /> NETWORK INTRUDER 43 17-NOV-2005 14:14:13.68 DESK.com::TELNET_AC105138<BR /><BR /><BR />Davor&gt; sh intrusion<BR />Intrusion Type Count Expiration Source<BR />--------- ---- ----- ---------- ------<BR /> NETWORK SUSPECT 43 17-NOV-2005 16:44:13.91 DESK.com::TELNET_AC105138<BR /> Thu, 17 Nov 2005 02:26:12 GMT https://community.hpe.com/t5/operating-system-openvms/intrusion-question/m-p/4941261#M22214 Davor_7 2005-11-17T02:26:12Z https://community.hpe.com/t5/operating-system-openvms/intrusion-question/m-p/4941262#M22215 Because it changed from intruder to suspect on 14:14. So it still remembers the underlying intrussions.<BR /><BR />Wim Thu, 17 Nov 2005 02:36:51 GMT https://community.hpe.com/t5/operating-system-openvms/intrusion-question/m-p/4941262#M22215 Wim Van den Wyngaert 2005-11-17T02:36:51Z https://community.hpe.com/t5/operating-system-openvms/intrusion-question/m-p/4941263#M22216 oh~ i have been aware of this is a fool question...<BR />sorry but thanks :) Thu, 17 Nov 2005 02:40:21 GMT https://community.hpe.com/t5/operating-system-openvms/intrusion-question/m-p/4941263#M22216 Davor_7 2005-11-17T02:40:21Z