[sudo-users] restricting users

tony.chamberlain at lemko.com tony.chamberlain at lemko.com
Wed Aug 5 20:26:33 EDT 2009

In other words, I can't make it so it denies them for a time?

-----Original Message-----
From: Stier, Matthew [mailto:Matthew.Stier at us.fujitsu.com]
Sent: Wednesday, August 5, 2009 04:50 PM
To: tony.chamberlain at lemko.com
Subject: RE: [sudo-users] restricting users

Welcome to a denial of service attack.

Step away from your keyboard for a few minutes, and mischievous hands
will have you locked out of sudo.

I've always preferred Sun Microsystems, choice on this matter. Failed
logins take 45 seconds to exit.  Quick enough for interactive users, but
drastically slows down program attacks.

-----Original Message-----
From: sudo-users-bounces at courtesan.com
[mailto:sudo-users-bounces at courtesan.com] On Behalf Of
tony.chamberlain at lemko.com
Sent: Wednesday, August 05, 2009 4:17 PM
To: sudo
Subject: [sudo-users] restricting users

They asked me to do something so that if this happens:

  $ sudo ls
  Sorry, try again.
  Sorry, try again.
  Sorry, try again.
  sudo: 3 incorrect password attempts

maybe twice, then the next time it either just locks up or says
like "too many password attempts.  You are blocked for 2 hours".

Anyway to do this?

On a similar note, using visudo I put

   Defaults insults

which is supposed to insult you when you enter a wrong password, but it
still saying "  Sorry, try again.".  DO you know why?

sudo-users mailing list <sudo-users at sudo.ws>
For list information, options, or to unsubscribe, visit:

More information about the sudo-users mailing list