how to enable an account lockout duration ??

hi,
i'm needing to enable an account lockout duration for a Redhat 9.0
machine. I have had much difficulty with finding anything online and
folks on #security on irc.freenode.net were no help either. Any
advice is GREATLY appreciated.
bRgds
chris

> i'm needing to enable an account lockout duration for a Redhat 9.0
> machine. I have had much difficulty with finding anything online and
> folks on #security on irc.freenode.net were no help either. Any
> advice is GREATLY appreciated.

On my slackware distribution, the /etc/shadow file has a field where the
account expiry date is listed. It is the second last field
username:....7::12631:

Where the 12631 has something to do with the expiry date because it only
appears alongside accounts that I know have expiry dates. What exactly, I
don't know. Maybe you could look up more on the shadow file format.

--
Jem Berkes
http://www.sysdesign.ca/

clh wrote:
> hi,
> i'm needing to enable an account lockout duration for a Redhat 9.0
> machine. I have had much difficulty with finding anything online and
> folks on #security on irc.freenode.net were no help either. Any
> advice is GREATLY appreciated.
> bRgds
> chris
A easy way to take care of this is to make PAM, pluggable authentication
module, take care of it. If you don't know what PAM is don't worry,
it's how RedHat 9 does authentication. Edit /etc/security/access.conf.
There should already be some commented out examples in the conf file
to do things like limit only certain users or certain groups. Hope this
helps.