HPE Community
Operating System - HP-UX
1834608 Members
2772 Online
110069 Solutions
New Discussion

Delay with login when typing wrong password

 
Chris Jones_1
Occasional Advisor

‎07-22-2001 11:20 PM

‎07-22-2001 11:20 PM

Delay with login when typing wrong password

Using HP-UX 11.0 with Trusted System active, when logging in through telnet and entering a wrong password there is a delay of between 10-20 seconds before the login prompt returns.

This is not the same behaviour on another system that is not trusted.

Since users frequently type the wrong password there is a real noticable delay in the login sequence.

Any ideas how this delay can be eliminated?

Thanks

Chris
0 Kudos
Reply
12 REPLIES 12
Andrew_4
Honored Contributor

‎07-22-2001 11:46 PM

‎07-22-2001 11:46 PM

Re: Delay with login when typing wrong password

You can use SAM to adjust this :

Auditing and Security
System Security Policies
Terminal Security Policies
Unsuccessful Login Tries Allowed: 1
Delay Between Login Tries (sec.): 2


hope this helps !

Andrew
The Unix Programmer's Manual, 2nd Edition, June, 1972: "The number of Unix installations has grown to 10, with more expected."
0 Kudos
Reply
Chris Jones_1
Occasional Advisor

‎07-22-2001 11:56 PM

‎07-22-2001 11:56 PM

Re: Delay with login when typing wrong password

Thanks for the quick response, however, I am still getting about 8 seconds delay between entering the password and receiving the message to say the login was wrong:
UX:login: ERROR: Login incorrect
0 Kudos
Reply
Andrew_4
Honored Contributor

‎07-23-2001 12:00 AM

‎07-23-2001 12:00 AM

Re: Delay with login when typing wrong password

Hmm...

I guess you could be experiencing a delay if you're using NIS/NIS+ to lookup your passwd file... or some other password Authentication method.

What is your password entry in /etc/nsswitch.conf ???

Andrew

The Unix Programmer's Manual, 2nd Edition, June, 1972: "The number of Unix installations has grown to 10, with more expected."
0 Kudos
Reply
Chris Jones_1
Occasional Advisor

‎07-23-2001 12:20 AM

‎07-23-2001 12:20 AM

Re: Delay with login when typing wrong password

We are not using NIS/NIS+ on the system and there is no nsswitch.conf file under /etc.

Any other suggestions?

Chris
0 Kudos
Reply
Manuel P. Ron
Frequent Advisor

‎07-24-2001 12:48 AM

‎07-24-2001 12:48 AM

Re: Delay with login when typing wrong password

Surely, your problem is there is not /etc/nsswitch.conf configured. Create the file by sam or using vi editor. Add a line like this...
passwd: files [NOTFOUND=return UNAVAIL=return]
Put file permissions to 444 and owned by root and sys group!.
Crash programs fail because they are based on the theory that, with nine women pregnant, you can get a baby a month. - Wernher von Braun
0 Kudos
Reply
Chris Jones_1
Occasional Advisor

‎07-24-2001 01:36 AM

‎07-24-2001 01:36 AM

Re: Delay with login when typing wrong password

Manuel

I followed your suggestion and created the file. Now I can't login as any user (including root from the console).

I removed the file from an existing session, but this does not clear the problem.

Help.
0 Kudos
Reply
Chris Jones_1
Occasional Advisor

‎07-24-2001 02:25 AM

‎07-24-2001 02:25 AM

Re: Delay with login when typing wrong password

I removed the nsswitch.conf file and rebooted.
System is back!

Now, if we don't use NIS, I assume this file is not useful?

I still have an 8 sec. delay between entering a wrong password and getting a login prompt back.
0 Kudos
Reply
George_14
Occasional Advisor

‎07-24-2001 05:01 AM

‎07-24-2001 05:01 AM

Re: Delay with login when typing wrong password

I had similar problem. What I did was I've modified the /etc/nsswitch.conf file.
Initial entry in my nsswitch.conf file was
hosts: files [TRYAGAIN=return NOTFOUND=return] dns
I've changed this to the following.
hosts: files [TRYAGAIN=continue NOTFOUND=continue] dns
You may check the /etc/resolv.conf file to see whether the entries are correct.
0 Kudos
Reply
Chris Jones_1
Occasional Advisor

‎07-24-2001 05:12 AM

‎07-24-2001 05:12 AM

Re: Delay with login when typing wrong password

George

Is this really applicable, even if NIS is not running.

Chris
0 Kudos
Reply
Chris Jones_1
Occasional Advisor

‎07-24-2001 05:15 AM

‎07-24-2001 05:15 AM

Re: Delay with login when typing wrong password

George

Is this really applicable, even if NIS is not configured/running.

Chris
0 Kudos
Reply
George_14
Occasional Advisor

‎07-24-2001 05:26 AM

‎07-24-2001 05:26 AM

Re: Delay with login when typing wrong password

I assume that you've DNS server to resolv the the host names. If your DNS entry is not correct in the /etc/resolv.conf it takes a while to get your login prompt. You can also change the order of you DNS server entry in the resolv.conf file. Why don't you try it. It worked for me.
0 Kudos
Reply
Manuel P. Ron
Frequent Advisor

‎07-25-2001 12:09 AM

‎07-25-2001 12:09 AM

Re: Delay with login when typing wrong password

Chris. You are not using the passwd file, I see. You must have configured other access method for your users. But you can't use NIS/NIS+ with Trusted Systems because your passwords are not longer contained in the /etc/passwd file. Have you tried to change the password of a user and then login?
Crash programs fail because they are based on the theory that, with nine women pregnant, you can get a baby a month. - Wernher von Braun
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.