Comments - Authentication Plugin - PAM

9 years, 5 months ago Hartmut Holzgraefe

Re: PAM authentication plugin

unix_chkpwd does throttle on wrong credentials being passed in, but that only helps if it is part of a service toolchain as it is with pam_unix

when called directly an attacker doesn't have to wait for the 10s penalty after giving a wrong password but can just start new unix_chkpwd processes without anything putting artificial limits on the number of checks per time unit ...

Content reproduced on this site is the property of its respective owners, and this content is not reviewed in advance by MariaDB. The views, information and opinions expressed by this content do not necessarily represent those of MariaDB or any other party.

Comments - Authentication Plugin - PAM

Products

Services

Pricing

Resources

About Us

Download MariaDB