当特定用户从控制台登录 Centos 计算机时,如何禁用以下消息?
Last failed login: Sun Jun 30 22:32:35 EST 2018 from 192.168.142.71 on ssh:notty
There were 3 failed login attempts since the last successful login.
注意:该用户是非root用户。
答案1
假设是 CentOS 7。
~# cat /etc/pam.d/postlogin
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
session [success=1 default=ignore] pam_succeed_if.so service !~ gdm* service !~ su* quiet
session [default=1] pam_lastlog.so nowtmp showfailed
session optional pam_lastlog.so silent noupdate showfailed
此showfailed
选项负责有关登录失败的消息。
注意:在我的机器上,默认情况下没有安装 authconfig,所以我不太担心更改会被破坏。
只需删除此选项即可禁用所有用户的消息。 AFAIK 每用户 PAM 配置有点愚蠢,这就是我想出的:
# cat /etc/pam.d/postlogin
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
session [success=ignore default=3] pam_succeed_if.so user in that_non_root_user
session [success=1 default=ignore] pam_succeed_if.so service !~ gdm* service !~ su* quiet
session [default=4] pam_lastlog.so nowtmp
session [default=3] pam_lastlog.so silent noupdate
session [success=1 default=ignore] pam_succeed_if.so service !~ gdm* service !~ su* quiet
session [default=1] pam_lastlog.so nowtmp showfailed
session optional pam_lastlog.so silent noupdate showfailed