Solved

what files do I find this security information in unix(s)

Posted on 2011-03-03
7
424 Views
Last Modified: 2012-05-11
following on each of the Unix (AIX, Solaris, Linux) servers

1)      Accounts are locked (requiring the user to reauthenticate) after idle time of 75 minutes or less
2)      Accounts are locked out (disabled) after a maximum of 15 invalid logon attempts
3)      When accounts are locked out due to exceeding the maximum invalid login attempts, the accounts remain disabled for a minimum of 130 minutes or until unlocked by someone with appropriate authority
4)      Passwords must be changed every 180 days
0
Comment
Question by:TIMFOX123
  • 3
  • 2
  • 2
7 Comments
 

Author Comment

by:TIMFOX123
ID: 35031117
Oh, redhat linux of course.
0
 
LVL 5

Expert Comment

by:balasundaram_s
ID: 35031289
1.        export TMOUT=4500 ( you can set it in the /etc/profile )
2 & 3.  vi /etc/pam.d/system-auth --> modify the line
             auth        required      pam_tally.so onerr=fail deny=15 unlock_time=7800
4.        chage -M 180 username  ( password will be valid for 180 days )
0
 

Author Comment

by:TIMFOX123
ID: 35032841
B:

good job but I do not want to set it, I want to find the information.

You did too good of a job.  

Cat  filename | grep 'xxx'  usually gives what I need.  I need file names and field names :)



0
What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

 
LVL 48

Accepted Solution

by:
Tintin earned 250 total points
ID: 35032986
1.  Not possible with standard system configurations. (btw, I assume you mean 75 mins or more)

2. Can't remember the location on AIX, probably under /etc/security
In Solaris 10 and above, it's in /etc/default/login (going from memory here)

3.  Not possible to have a time set on AIX and Solaris systems.

4.  Can't remember the AIX command.  You'll find an option under smit.
On Solaris, do:

passwd -x 180 user
0
 
LVL 48

Expert Comment

by:Tintin
ID: 35032998
Most of the info you require is in /etc/shadow on Solaris/Linux systems.

On AIX the equivalent are the files under /etc/security
0
 
LVL 5

Assisted Solution

by:balasundaram_s
balasundaram_s earned 250 total points
ID: 35037399
File names and Field names on AIX,

1.  /etc/profile  -  TMOUT
2.  /etc/security/lastlog - unsuccessful_login_count
3. /etc/security/login.cfg  -  logininterval ( the port will be locked for this seconds, not the user id)
4. /etc/security/user  -   maxage
0
 

Author Closing Comment

by:TIMFOX123
ID: 35039621
thank you so much.
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Installing FreeBSD… FreeBSD is a darling of an operating system. The stability and usability make it a clear choice for servers and desktops (for the cunning). Savvy?  The Ports collection makes available every popular FOSS application and packag…
This document is written for Red Hat Enterprise Linux AS release 4 and ORACLE 10g.  Earlier releases can be installed using this document as well however there are some additional steps for packages to be installed see Metalink. Disclaimer: I hav…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now