Allow configurable amount of attempts at login:

Question

Allow configurable amount of attempts at login:

SJCaldwell opened this issue 8 years ago · 1 comments

How many attempts does a user get to have a successful login before they are rejected?

Debian defaults to 3, I believe, and then will terminate the connection.

UPDATE: standard unix authentication uses 3. The pam module allows 6 currently, without my having set any options in-particular.

Answer 1 · 2018-11-30T17:17:42.000Z

This module maintains a count of attempted accesses, can reset count on success, can deny access if too many attempts fail.
--pam_tally2 - login counter (tallying) module

Update:

This can also be configured in OpenSSH via /etc/ssh/sshd_config:

StrictModes yes
MaxAuthTries 3

# Other helpful options
#MaxSessions 2
#LoginGraceTime 2m

No need to reinvent this functionality, closing.