Date: Thu, 18 Mar 1999 18:34:30 +0100 (CET) From: Zahemszky Gabor <zgabor@CoDe.hu> To: freebsd-security@freebsd.org Subject: Re: bug (?) in login limits from login.conf Message-ID: <199903181734.SAA00676@CoDe.hu> In-Reply-To: <84824.921776366@axl.noc.iafrica.com> from Sheldon Hearn at "Mar 18, 99 06:59:26 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
>
>
> On Thu, 18 Mar 1999 17:23:42 +0100, Zahemszky Gabor wrote:
>
> > If there are any login restrictions (time/host or line) in /etc/login.conf,
> > login responds with:
> > <time restriction>:
> > ``Logins not available right now''
>
> While your comments are fair enough from a security-minded point of
> view, you need to consider the confusion and frustration that your users
> will experience when they type their username/password correctly and get
> exactly the same message they'd get if they were typing their password
> incorrectly.
Well. In that case, it would be better to say:
Time restriction
Host restriction
Tty restriction
or something like that, to distinguish them. Now, I cannot say: wrong host/
wrong line, or maybe /etc/login.access ;-)
Bye, Gabor
ZGabor at CoDe dot HU
--
#!/bin/ksh
Z='21N16I25C25E30, 40M30E33E25T15U!' ;IFS=' ABCDEFGHIJKLMNOPQRSTUVWXYZ ';set $Z ;for i { [[ $i = ? ]]&&print $i&&break;[[ $i = ??? ]]&&j=$i&&i=${i%?};typeset -i40 i=8#$i;print -n ${i#???};[[ "$j" = ??? ]]&&print -n "${j#??} "&&j=;typeset +i i;};IFS=' 0123456789 ';set $Z;X=;for i { [[ $i = , ]]&&i=2;[[ $i = ?? ]]||typeset -l i;X="$X $i";typeset +l i;};print "$X"
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199903181734.SAA00676>