tyler.durden
/
harbian-audit
mirror of https://github.com/hardenedlinux/harbian-audit.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Modify 9.2.11 9.2.12

This commit is contained in:
Samson-W 2018-10-30 03:13:25 +08:00
parent ac2875d267
commit a1a45bb163
2 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
bin/hardening/9.2.11_enable_lockout_failed_password.sh
View File

@ -6,6 +6,7 @@
#
# 9.2.11 Set Lockout for Failed Password Attempts (Not Scored)
# The number in the original document is 9.2.2
#
set -e # One error, it's over
@ -45,7 +46,7 @@ apply () {
apt_install $PACKAGE
elif [ $FNRET = 2 ]; then
crit "Apply:$PATTERN is not present in $FILE"
add_line_file_before_pattern $FILE "auth required pam_tally.so onerr=fail deny=6 unlock_time=1800" "# Uncomment and edit /etc/security/time.conf if you need to set"
add_line_file_before_pattern $FILE "auth required pam_tally2.so onerr=fail deny=6 unlock_time=1800" "# Uncomment and edit /etc/security/time.conf if you need to set"
fi
}

1
bin/hardening/9.2.12_limit_password_reuse.sh
View File

@ -6,6 +6,7 @@
#
# 9.2.12 Limit Password Reuse (Scored)
# The number in the original document is 9.2.3
#
set -e # One error, it's over