Skip to main content

So, looks like # enabled pam_faillock by default, with default options so if you fail to input password 3 times in 15 minutes (in login, screen unlock or sudo), you are locked out for ten (10) minutes !!

Quite extreme, for people like me that have multiple devices with different password that can be connected to same keyboard, which leads to input wrong password at first (even second) try from time to time; add to this that I lock the screen quite often and you get a quite annoying picture..

If you are like me and you don't want to disable this because can be useful, but mostly because you don't want to fiddle with pam config file, you can edit /etc/security/faillock.conf and set more sane settings. (thanks to this forum thread)

If you get locked out, but you have root access, you can reset the lock with

# faillock --user yourusername --reset

fabrixxm reshared this.

I just tripped over it today, much fun considering that you can only know that you are locked out if you try a logging into a different tty ^_^
It's more fun when it locks you out after a single wrong password at the unlock screen, because maybe I have typed wrong password twice in a sudo prompt in last 15 minutes...

filippodb reshared this.

What a nice plot twist for a thriller. The detectives hunt down the $WomanInBlack just to realize, that she is doing this as side job :D

This website uses cookies to recognize revisiting and logged in users. You accept the usage of these cookies by continue browsing this website.