CentOS: user is not locked after 5 consecutive failed login
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Low
|
Andy |
Bug Description
Brief Description
-----------------
After 5 sysadmin user login failures with incorrect password on console window, there was a message "Maximum login tried", but there was no locked out for the user. The user was able to log in immediately after with the correct password.
Severity
--------
<Minor: System/Feature is usable with minor issue>
Steps to Reproduce
------------------
1. Install CentOS Simplex system
2. Keep the console open and try to login as a sysadmin with the wrong password more than 5 times and verify the correct password and whether the user was locked out.
Expected Behavior
------------------
The user is locked for 5 mins after the 5 failed login attempts.
Actual Behavior
----------------
The user can login with correct password right after the 5 failed login.
Reproducibility
---------------
100% reproducible
System Configuration
-------
Any
Branch/Pull Time/Commit
-------
STX master latest.
Last Pass
---------
Unknown
Timestamp/Logs
--------------
See steps to reproduce.
Test Activity
-------------
Regression Testing
Workaround
----------
N/A
Changed in starlingx: | |
assignee: | nobody → Andy (andy.wrs) |
Changed in starlingx: | |
importance: | Undecided → Low |
tags: | added: stx.7.0 stx.security |
Fix proposed to branch: master /review. opendev. org/c/starlingx /config- files/+ /845163
Review: https:/