From: Harvey, Bruce T. (BTHarvey@LMUS.LEGGMASON.COM)
Date: Thu Oct 09 2003 - 15:38:01 EDT
We've noticed in our systems where a username is an 'su-only' username (for
logging and auditing purposes so that we can track "who" became this user to
effect a change), that the counts for unsuccessful login attempts is
cumulative and not being reset with every successful attempt, as it is on
our systems that are _not_ su-only accounts (where users tend to log in
directly rather than be bothered by 'su-ing.'
Besides setting the lockout number down to 0 so it never goes off, does
anyone have an answer on how to reset it on the su-only accounts? Or is
this a bug fixed in a later release? We're seeing it in our 4.3.3 ML06
systems, and we don't see it that often, but we've just noticed the pattern,
and we don't know whether to be concerned for our 5.1 and 5.2 systems (I'll
be doing some checking while sending this out to you folks). Anyone else
run into this?
Bruce T. Harvey
Legg Mason Wood Walker, Inc.
Corporate Technology - Tech. Svcs.
Red Run 2nd Floor - Owings Mills, MD
(410) 580-7383 - BTHarvey@LeggMason.com
-------------------------------------------------------
IMPORTANT: The security of electronic mail sent through the Internet
is not guaranteed. Legg Mason therefore recommends that you do not
send confidential information to us via electronic mail, including social
security numbers, account numbers, and personal identification numbers.
Delivery, and timely delivery, of electronic mail is also not
guaranteed. Legg Mason therefore recommends that you do not send time-sensitive
or action-oriented messages to us via electronic mail, including
authorization to "buy" or "sell" a security or instructions to conduct any
other financial transaction. Such requests, orders or instructions will
not be processed until Legg Mason can confirm your instructions or
obtain appropriate written documentation where necessary.
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 22:17:16 EDT