From 0e97f7936fb522c82c0cb1566e01dfa105fe1de4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Kamil=20Boraty=C5=84ski?= <kamil.boratynski@icloud.com>
Date: Mon, 7 Sep 2015 04:12:58 +0200
Subject: [PATCH] Wrote 'AUTH-9407' - logging failed login attempts.

---
 include/tests_authentication | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)

diff --git a/include/tests_authentication b/include/tests_authentication
index dd48d80c..f8c9b6f4 100644
--- a/include/tests_authentication
+++ b/include/tests_authentication
@@ -1077,6 +1077,27 @@
     fi
 #
 #################################################################################
+#
+    # Test        : AUTH-9407
+    # Description : Logging failed login attempts
+    if [ -f /etc/login.defs ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
+    Register --test-no AUTH-9407 --os Linux --preqs-met ${PREQS_MET} --weight L --network NO --description "Logging failed login attempts"
+    if [ ${SKIPTEST} -eq 0 ]; then
+        logtext "Test: Checking FAILLOG_ENAB option in /etc/login.defs "
+        FIND=`grep "^FAILLOG_ENAB" /etc/login.defs | awk '{ if ($1=="FAILLOG_ENAB") { print $2 } }'`
+        if [ "${FIND}" = "" -o "${FIND}" = "no" ]; then
+            logtext "Result: failed login attempts are not logged"
+            Display --indent 2 --text "- Logging failed login attempts" --result DISABLED --color YELLOW
+            ReportSuggestion ${TEST_NO} "Configure failed login attempts to be logged in /var/log/faillog"
+            AddHP 0 1
+          else
+            logtext "Result: failed login attempts are logged in /var/log/faillog"
+            Display --indent 2 --text "- Logging failed login attempts" --result OK --color GREEN
+            AddHP 3 3
+        fi
+    fi
+#
+#################################################################################
 #
 
 report "ldap_auth_enabled=${LDAP_AUTH_ENABLED}"