主页 / unix / 问题 / 462046
Accepted
Reza
Asked: 2018-08-12 11:50:35 +0800 CST

如何在 Centos 上禁用“上次登录失败”消息?

  • 772

当特定用户从控制台登录 Centos 机器时,如何禁用以下消息?

Last failed login: Sun Jun 30 22:32:35 EST 2018 from 192.168.142.71 on ssh:notty
There were 3 failed login attempts since the last successful login.

注意:用户是非root用户。

centos login

1 个回答

  1. Best Answer

    假设 CentOS 7。

    ~# cat /etc/pam.d/postlogin 
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.

session     [success=1 default=ignore] pam_succeed_if.so service !~ gdm* service !~ su* quiet
session     [default=1]   pam_lastlog.so nowtmp showfailed
session     optional      pam_lastlog.so silent noupdate showfailed

    这里showfailed选项负责有关登录失败的消息。

    注意:在我的机器上默认没有安装 authconfig,所以我不太担心更改被破坏。

    只需删除此选项即可禁用所有用户的消息。AFAIK 每用户 PAM 配置有点傻,这就是我想出的:

    # cat /etc/pam.d/postlogin 
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.

session     [success=ignore default=3] pam_succeed_if.so user in that_non_root_user
session     [success=1 default=ignore] pam_succeed_if.so service !~ gdm* service !~ su* quiet
session     [default=4]   pam_lastlog.so nowtmp
session     [default=3]   pam_lastlog.so silent noupdate
session     [success=1 default=ignore] pam_succeed_if.so service !~ gdm* service !~ su* quiet
session     [default=1]   pam_lastlog.so nowtmp showfailed
session     optional      pam_lastlog.so silent noupdate showfailed
    • 2

相关问题