/etc/failures
James E. Leinweber
jiml at uwslh.UUCP
Fri Dec 2 03:06:57 AEST 1988
Logging the number of failed attempts to sign in on an account, and
telling it to the user, is a nice idea. However, disabling accounts
is itself a more or less well known security problem! This allows an
intruder to deny service to authorized users by spoofing them enough
times. If you had servers managed via networks (as opposed to
physical consoles), and the guys in the black hats nailed root and all
your other administrators this way, regaining control of the machines
could be a real chore.
--
Jim Leinweber jiml at uwslh.uucp jiml%uwslh.uucp at cs.wisc.edu
...!{rutgers, ucbvax ...}!uwvax!uwslh!jiml
State Laboratory of Hygiene @ Univ. of Wisconsin - Madison; (608) 262-0736
More information about the Comp.unix.wizards
mailing list