How to disable 3 login attempts (allow as many logins without suspending) on HP-UX Solaris Linux

Hi

How can I disable ssh & console login (ie login via ssh & at the physical console)
 attempts for the following Unix :
a) HP-UX trusted(enhanced security) system, B11.23 (ie one without /etc/shadow file present)
b) HP-UX B11.11 (normal HP-UX)
c) Solaris 8, 9, 10
d) Redhat Linux 4.x & 5.x

Also, how can I extend the current password expiry of 90 days to say 180 days
for all the above UNIXes?

Thanks
sunhuxAsked:
Who is Participating?
 
yuzhConnect With a Mentor Commented:
1) For Solaris modify /etc/default/login file to make sure
RETRIES=x
is commemted out (Put a # in front of the line or delete it)
2) For HP-UX, ([ a) and b) ] , you can run sam (GUI tool)
Accounts for Users and Groups -> Users, select the user from the list, go to the ACTIONS menu and select 'Modify Security Policies'. This will then allow you to modify the security settings for that particular user.
or modify the system Policies.
also have a look at:
http://forums13.itrc.hp.com/service/forums/questionanswer.do?threadId=574990&admit=109447627+1227052421586+28353475
3) For RedHat, have a look at your /etc/pam.d/system-auth file
see:
http://kbase.redhat.com/faq/FAQ_103_12548.shtm
 http://www.hcmuns.edu.vn/pub/linux/oracle/8i/docs/Installing%20Oracle%209i%20on%20RedHat%20Linux/Security.shtml.htm
 
for more details.
 
 
0
 
gheistConnect With a Mentor Commented:
How do you find out "the current password expiry of 90 days" on ALL systems?
0
 
sunhuxAuthor Commented:
> How do you find out "the current password expiry of 90 days" on ALL systems?
Guess I'll just select a few ids/accounts & issue "passwd -s id" & this will tell me
the expiry of the account/id.  This gives me a clue, so  "passwd -x 180 id"
would extend the expiry of the account/id to 180 days, thanks.

thanks Gheist, looks like I have to do "export DISPLAY=0:0; export TERM=vt100; xhost +"
before I could run SAM properly in my ssh session.

Found from the link you gave the commands to increase the max retries on terminals
& for ids/accounts are respectively :

1) For t_maxtries:
Example:
/usr/lbin/modprterm -m tmaxtries=25

2) For u_maxtries:
Example:
/usr/lbin/modprdef -m umaxlntr=9


Will allocate points after this weekend so that I can quickly refer to my "Open Questions"
section.  Thanks a lot
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.