Hewlett Packard Enterprise Community
Help
cancel
Turn on suggestions Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Trusted system denial of service

Mike Duffy
Frequent Advisor
‎07-18-2003 04:23 AM
‎07-18-2003 04:23 AM

Trusted system denial of service

Hello,

We are running a trusted system hpux11. I would like accounts not to be permanently disabled when a user has too many unsuccessful logon attempts. I would like the account to be disabled for a increasing ammount of time as more failed attempts are made.
0 Kudos
Reply
3 REPLIES 3
Tom Geudens
Honored Contributor
‎07-18-2003 04:53 AM
‎07-18-2003 04:53 AM

Re: Trusted system denial of service

Hi Mike,
Well, you can get most of the info you'll need from underneath the /tcb directory ... but I'm afraid you'll have to write the scripts to do this yourself, for as far as I know there's no "native" way to do this in HP-UX.

However, taking a look in the SAMlog should get you on the way (and /usr/lbin/modprpw might as well ;-).

Regards,
Tom Geudens
A life ? Cool ! Where can I download one of those from ?
0 Kudos
Reply
Jairo Campana
Trusted Contributor
‎07-18-2003 04:54 AM
‎07-18-2003 04:54 AM

Re: Trusted system denial of service

configure using sam
option:
#sam
Auditing and security
Sytem Security Policy

General account Polices
legionx
0 Kudos
Reply
Tyler Easterling
Advisor
‎07-18-2003 11:31 AM
‎07-18-2003 11:31 AM

Re: Trusted system denial of service

Message contains an attachment
Hi,

I've attached a script which will detect and unlock only user accounts which have been locked due to unsuccessful login tries. You may use this script from a cron job at regular intervals, or as you see fit you can adapt a more complex mechanism for extending the amount of time a user spends locked out.

Tyler
0 Kudos
Reply