You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I would like to suggest to switch to use faillock for Redhat.
I can provide a PR with the needed changes, based in configuration examples from the redhat guide.
Also there there are 2 other open issues related to this: #194#252 that I could try to solve in the changes.
The text was updated successfully, but these errors were encountered:
Redhat security guide recommends the use of
pam_faillock
to configure account lockout policy.Currently the PAM module used in the role to configure account lockout is
pam_tally2
https://github.com/dev-sec/ansible-os-hardening/blob/ac9fbb312a41fa91fa18da48e700bae6ae97328a/tasks/pam.yml#L112-L119
https://github.com/dev-sec/ansible-os-hardening/blob/ac9fbb312a41fa91fa18da48e700bae6ae97328a/templates/etc/pam.d/rhel_system_auth.j2#L5-L13
I would like to suggest to switch to use faillock for Redhat.
I can provide a PR with the needed changes, based in configuration examples from the redhat guide.
Also there there are 2 other open issues related to this: #194 #252 that I could try to solve in the changes.
The text was updated successfully, but these errors were encountered: