如何在 Centos 上禁用“上次登录失败”消息?

tag-icon tag-icon centos login banner
如何在 Centos 上禁用“上次登录失败”消息?

当特定用户从控制台登录 Centos 计算机时,如何禁用以下消息?

Last failed login: Sun Jun 30 22:32:35 EST 2018 from 192.168.142.71 on ssh:notty
There were 3 failed login attempts since the last successful login.

注意:该用户是非root用户。

答案1

假设是 CentOS 7。

~# cat /etc/pam.d/postlogin 
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.

session     [success=1 default=ignore] pam_succeed_if.so service !~ gdm* service !~ su* quiet
session     [default=1]   pam_lastlog.so nowtmp showfailed
session     optional      pam_lastlog.so silent noupdate showfailed

showfailed选项负责有关登录失败的消息。

注意:在我的机器上,默认情况下没有安装 authconfig,所以我不太担心更改会被破坏。

只需删除此选项即可禁用所有用户的消息。 AFAIK 每用户 PAM 配置有点愚蠢,这就是我想出的:

# cat /etc/pam.d/postlogin 
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.

session     [success=ignore default=3] pam_succeed_if.so user in that_non_root_user
session     [success=1 default=ignore] pam_succeed_if.so service !~ gdm* service !~ su* quiet
session     [default=4]   pam_lastlog.so nowtmp
session     [default=3]   pam_lastlog.so silent noupdate
session     [success=1 default=ignore] pam_succeed_if.so service !~ gdm* service !~ su* quiet
session     [default=1]   pam_lastlog.so nowtmp showfailed
session     optional      pam_lastlog.so silent noupdate showfailed

相关内容