Changed /etc/pam.d/system-auth-ac and now you can log into the server with wrong password.

**jgonza1** · 28th November 2012, 12:15 PM

I changed the /etc/pam.d/system-auth-ac like below and now you do not have to put in the right password to long into the server. What am I doing wrong?

Code:

# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth        required      pam_env.so
auth        sufficient    pam_unix.so nullok try_first_pass
#auth        requisite     pam_succeed_if.so uid >= 500 quiet
#auth        required      pam_deny.so
#auth        sufficient    pam_fprintd.so
auth        required      pam_tally2.so deny=3 onerr=fail unlock_time=300
account     required      pam_tally2.so
account     required      pam_unix.so
#account     sufficient    pam_succeed_if.so uid < 500 quiet
#account     sufficient    pam_localuser.so
account     required      pam_permit.so
password    requisite     pam_cracklib.so try_first_pass retry=3 minlen=8 ucredit=1 dcredit=1 lcredit=2 difok=5
password    sufficient    pam_unix.so sha512 shadow nullok try_first_pass rememeber=8 use_authtok
password    required      pam_deny.so
session     optional      pam_keyinit.so revoke
session     required      pam_limits.so
session     [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid
session     required      pam_unix.so

Thread: Changed /etc/pam.d/system-auth-ac and now you can log into the server with wrong password.

Thread Tools

Display

Changed /etc/pam.d/system-auth-ac and now you can log into the server with wrong password.

Thread Information

Users Browsing this Thread

Similar Threads

[Solved] Lighttpd auth on root server

windows server 2003 as a host system for LINUX guest system VPS

How to lock the root account? if password is wrong

NTP syncronizing time with server wrong

I forgot my root password, how do I get into my system?

Posting Permissions