Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 25 Feb 1999 20:31:00 -0600
From:      Don Read <sysop@calcasieu.com>
To:        <freebsd-questions@FreeBSD.ORG>
Subject:   Re: Security question
Message-ID:  <3.0.5.32.19990225203100.008c9bf0@mail>
next in thread | raw e-mail | index | archive | help 
(missed the cc, sorry)

>Date: Thu, 25 Feb 1999 20:30:00 -0600
>To: Alan Weber <aaweber@austin.rr.com>
>From: Don Read <sysop@calcasieu.com>
>Subject: Re: Security question
>In-Reply-To: <19990225195931.A14743@austin.rr.com>
>References: <19990225162636.A46163@wopr.caltech.edu>; from Matthew Hunt on
Thu, Feb 25, 1999 at 04:26:36PM -0800>
<913B8C252194D2119BD500805F3181789704F6@za12nt02.mweb.com>
<19990225162636.A46163@wopr.caltech.edu>
>
>back on 07:59 PM 2/25/99 -0600, you said:
>>On Thu, Feb 25, 1999 at 04:26:36PM -0800, Matthew Hunt wrote:
>>--> On Thu, Feb 25, 1999 at 09:23:03PM +0200, Langa Kentane wrote:
>
><snip>
>
>>--> > lockout an account after a certain number of unsuccessful logons.
>>--> 
>>--> I don't know offhand how to do that, but one thing to keep in
>>--> mind is that if you lock out a user because of too many unsuccessful
>>--> logins, then anybody can deny service to one of your users by
>>--> logging in unsuccessfully.
>
><snip again>
>
>>
>>              I would prefer to have the system insert an increasing
delay that grows to 60 seconds or some configurable value with a decay to
zero after a while. I still think that having a secure cryptic password
should be adequate. One useful feature would be to add password policies to
FreeBSD. Min length/format/etc. 
>>
>
>Agreed, SCO & DG/UX have it. Bad password ? go to sleep for 10 seconds.
>
>Or no lock-outs on UID zero accounts.
>
>Regards,
-- 
Don Read                               sysop@calcasieu.com
EDP Manager                                dread@texas.net
Calcasieu Lumber Co.                             Austin TX
- There cannot be a crisis next week. My schedule is already full.



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.5.32.19990225203100.008c9bf0>