[NCLUG] Courier-IMAP + pam_tally

listz at hate.cx listz at hate.cx
Sat Mar 1 11:19:50 MST 2003


i've tried asking this question on the courier-imap mailing list to no avail, so
i thought maybe someone on the list would have had experience with this. I've
added:

auth       required     /lib/security/pam_nologin.so onerr=fail
auth       required     /lib/security/pam_tally.so no_magic_root
account    required     /lib/security/pam_tally.so deny=3 no_magic_root reset

to my imap and pop3 files in /etc/pam.d, and i guess it sort of works. pam_tally
will increment on every login, which it should, but it never resets on a
successful login, nor does it ever deny when the tally reaches 3. so, does
anyone have any ideas? it works just dandy in /etc/pam.d/sshd.

<EOF>
::[ RFC 2795 ]::
 "Democracy means simply the bludgeoning of the
 people by the people for the people."
 -Oscar Wilde
statik at hate.cx / security engineer \ "My God, it's full of stars..."
PGP fingerprint: D656 01EB 79FC 9285 F110  2AB1 D8BC B3BA BEA2 E0C5




More information about the NCLUG mailing list