HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- reusing disabling mechanism for login
Operating System - HP-UX
1832152
Members
3094
Online
110038
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-06-2003 08:01 AM
10-06-2003 08:01 AM
reusing disabling mechanism for login
hello all! I have created a login program and I would like to find out if it's possible to reuse the login mechanism of the operating system (i.e. its way of logging bad login attempts and disabling a user when a certain number of times has been reached) Is there a command of function call I could use to be able to do this?
thanks for any help. :)
thanks for any help. :)
4 REPLIES 4
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-06-2003 05:33 PM
10-06-2003 05:33 PM
Re: reusing disabling mechanism for login
Don't think this is possible without the use of perl or something similar.
If you convert your system to trusted mode, you can controls things like logindelay between logins, no. of unsuccessful logins and many other things.
In order to use the login mechanism, you would have to interupt it and use your own stuff and log the details. I happened to come across similar posting on itrc where it was suggested to replace passwd and other login related commands with perl scripts that do the chekcing you want and log details.
If you convert your system to trusted mode, you can controls things like logindelay between logins, no. of unsuccessful logins and many other things.
In order to use the login mechanism, you would have to interupt it and use your own stuff and log the details. I happened to come across similar posting on itrc where it was suggested to replace passwd and other login related commands with perl scripts that do the chekcing you want and log details.
There is no substitute to HARDWORK
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-06-2003 05:50 PM
10-06-2003 05:50 PM
Re: reusing disabling mechanism for login
Be interesting to know what language you used for your login program.
There are no generic authorization functions that "login" uses (that would not be the unix way ;)). However, there are routines for accessing utmp, btmp and wtmp and, if you are using 'C' it is a simple matter to read and write to these files. The functions you need to look at are of the "getutent()" family. They all work on utmp like files so will be able to work with the bad login (btmp) file for example.
There are no generic authorization functions that "login" uses (that would not be the unix way ;)). However, there are routines for accessing utmp, btmp and wtmp and, if you are using 'C' it is a simple matter to read and write to these files. The functions you need to look at are of the "getutent()" family. They all work on utmp like files so will be able to work with the bad login (btmp) file for example.
Never preceed any demonstration with anything more predictive than "watch this"
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-07-2003 01:45 AM
10-07-2003 01:45 AM
Re: reusing disabling mechanism for login
Hello! thanks for the info. I'm developing the program with C. What it does is authenticate the users logging into the program. The problem is that it doesn't limit the number of login attempts currently and I think this is a security problem since any user can try 100 times or more and maybe get lucky guessing the password.
I'm not sure which is the best way of implementing the solution to this problem. I thought of using the built-in mechanisms of the OS if that is possible since it is able to do so using the login service. Is this the getutent() you were talking about. I'm not that familiar but I think utmp is for accounting purposes and doesn't log in failed login attempts. Can anybody please give me more information?
thanks in advance for any help. :)
I'm not sure which is the best way of implementing the solution to this problem. I thought of using the built-in mechanisms of the OS if that is possible since it is able to do so using the login service. Is this the getutent() you were talking about. I'm not that familiar but I think utmp is for accounting purposes and doesn't log in failed login attempts. Can anybody please give me more information?
thanks in advance for any help. :)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-07-2003 06:22 AM
10-07-2003 06:22 AM
Re: reusing disabling mechanism for login
Look at btmp. It is database for bad login attempts.
You can log your users bad attempts into btmp and then read on each attempt to see if they have had X number of attempts in a set time period.
If you don't have a /var/adm/btmp file, just touch it and it will start logging for you. Look at the manpage though. It cautions you that both btmp and wtmp grow w/o bound. So you may have to have some sort of purge routine every so often.
You can log your users bad attempts into btmp and then read on each attempt to see if they have had X number of attempts in a set time period.
If you don't have a /var/adm/btmp file, just touch it and it will start logging for you. Look at the manpage though. It cautions you that both btmp and wtmp grow w/o bound. So you may have to have some sort of purge routine every so often.
Time is not a test of the truth.
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP