CFG/basecamp_omarchy
1
0
Fork 0
mirror of https://github.com/basecamp/omarchy.git synced 2026-01-09 05:10:54 +08:00
Code Issues Packages Projects Releases Wiki Activity

Ensure lockout limit is reset on restart

Browse Source
This commit is contained in:
David Heinemeier Hansson 2025-11-25 15:03:41 +01:00
parent 77fd86ae93
commit 9524259765
2 changed files with 8 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
install/config/increase-lockout-limit.sh
View File

@ -1,3 +1,7 @@
# Increase lockout limit to 10 and decrease timeout to 2 minutes
sudo sed -i 's|^\(auth\s\+required\s\+pam_faillock.so\)\s\+preauth.*$|\1 preauth silent deny=10 unlock_time=120|' "/etc/pam.d/system-auth"
sudo sed -i 's|^\(auth\s\+\[default=die\]\s\+pam_faillock.so\)\s\+authfail.*$|\1 authfail deny=10 unlock_time=120|' "/etc/pam.d/system-auth"
# Ensure lockout limit is reset on restart
sudo sed -i '/pam_faillock\.so preauth/d' /etc/pam.d/sddm-autologin
sudo sed -i '/auth.*pam_permit\.so/a auth required pam_faillock.so authsucc' /etc/pam.d/sddm-autologin

4
migrations/1764067963.sh Normal file
View File

@ -0,0 +1,4 @@
echo "Ensure lockout limit is reset on reboot"
sudo sed -i '/pam_faillock\.so preauth/d' /etc/pam.d/sddm-autologin
sudo sed -i '/auth.*pam_permit\.so/a auth required pam_faillock.so authsucc' /etc/pam.d/sddm-autologin