Debian: user is not locked after 5 consecutive failed login
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Low
|
Andy |
Bug Description
Brief Description
-----------------
After 5 sysadmin user login failures with incorrect password on console window, there was no locked out for the user. The user was able to log in immediately after with the correct password.
Severity
--------
<Minor: System/Feature is usable with minor issue>
Steps to Reproduce
------------------
1. Install Debian Simplex system
2. Keep the console open and try to login as a sysadmin with the wrong password more than 5 times and verify with the correct password and whether the user was locked out.
Expected Behavior
------------------
The user is locked for 5 mins after the 5 failed login attempts.
Actual Behavior
----------------
The user can login with correct password right after the 5 failed login.
Reproducibility
---------------
100% reproducible
System Configuration
-------
Any
Branch/Pull Time/Commit
-------
STX master latest.
Last Pass
---------
Unknown
Timestamp/Logs
--------------
See steps to reproduce.
Test Activity
-------------
Regression Testing
Workaround
----------
N/A
Changed in starlingx: | |
assignee: | nobody → Andy (andy.wrs) |
Changed in starlingx: | |
importance: | Undecided → Low |
tags: | added: stx.7.0 stx.debian stx.security |
Fix proposed to branch: master /review. opendev. org/c/starlingx /config- files/+ /845295
Review: https:/