On Sat, 2006-04-01 at 12:56 -0500, Neil Cherry wrote: > Gene Heskett wrote: > > On Friday 31 March 2006 19:42, John Summerfield wrote: > > >> A reasonable security system would shut down the login process for a > >> time after some number of consecutive failed login attempts. It's a > >> rule that's been around for a long time, it's even in Linux, but > >> implemented poorly. > > > > And how does one go about turning that option on, with say a 15 minute > > timeout? > > Check out pam_abl on http://www.hexten.net/pam_abl/ (SourceForge > project). If you want to go this route, both denyhosts and pam_abl are available for Fedora Extras. Rahul
