|
Size: 453
Comment:
|
Size: 1063
Comment:
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 12: | Line 12: |
| cat >> /etc/pam.d/system-auth <<"EOF" # ${date +%F} added |
cat >> /etc/pam.d/system-auth <<EOF ### $(date +%F) added ### |
| Line 18: | Line 18: |
= Step 3: 修改/etc/pam.d目录中的login文件为指定的参数 = {{{ cat >> /etc/pam.d/login <<EOF ### $(date +%F) added ### auth required pam_tally2.so deny=5 unlock_time=300 even_deny_root root_unlock_time=300 auth required pam_env.so auth required pam_unix.so auth required pam_nologin.so account required pam_unix.so password required pam_unix.so session required pam_limits.so session required pam_unix.so session required pam_lastlog.so nowtmp session optional pam_mail.so standard EOF }}} |
Describe désert/workarea/2022-11-16 here.
Step 1: 备份etc目录配制
tar -zcvf etc_$(date +%F).tar.gz /etc/
Step 2: 修改/etc/pam.d目录中的system-auto文件为指定的参数
cat >> /etc/pam.d/system-auth <<EOF ### $(date +%F) added ### password requisite pam_pwquality.so try_first_pass local_users_only retry=3 authtok_type= minlen=8 lcredit=-1 ucredit=-1 dcredit=-4 ocredit=-1 enforce_for_root EOF
Step 3: 修改/etc/pam.d目录中的login文件为指定的参数
cat >> /etc/pam.d/login <<EOF ### $(date +%F) added ### auth required pam_tally2.so deny=5 unlock_time=300 even_deny_root root_unlock_time=300 auth required pam_env.so auth required pam_unix.so auth required pam_nologin.so account required pam_unix.so password required pam_unix.so session required pam_limits.so session required pam_unix.so session required pam_lastlog.so nowtmp session optional pam_mail.so standard EOF