{"id":280,"date":"2012-12-26T08:42:29","date_gmt":"2012-12-26T08:42:29","guid":{"rendered":"http:\/\/mini.jellypo.pe.kr\/wp\/?p=280"},"modified":"2012-12-26T08:42:29","modified_gmt":"2012-12-26T08:42:29","slug":"centos%ec%97%90%ec%84%9c-pamtallyso-%ec%82%ac%ec%9a%a9%ed%95%98%ea%b8%b0","status":"publish","type":"post","link":"https:\/\/mini.jellypo.pe.kr\/wp\/?p=280","title":{"rendered":"CentOS\uc5d0\uc11c pam_tally.so \uc0ac\uc6a9\ud558\uae30"},"content":{"rendered":"

\uc774 \uae00\uc740 CentOS5 32bit \uae30\uc900\uc73c\ub85c \uc4f0\uc600\ub2e4.<\/font><\/p>\n<\/p>\n

pam\uc758 \uae30\ubcf8 \uac1c\ub150<\/font><\/p>\n

    \n
  1. CentOS\ub97c \uae30\uc900\uc73c\ub85c \uc124\uba85\ud568<\/font><\/li>\n
  2. \uc778\ud130\ub137\uc5d0\uc11c \uac80\uc0c9\ud560 \ub0b4\uc6a9\uc744 \uc801\uc6a9\ud558\uc9c0 \ub9c8\ub77c. \ubc84\uc804\ubcc4\ub85c \uc635\uc158\uc774 \ub2e4\ub974\uae30 \ub54c\ubb38\uc784. \/usr\/share\/doc\/pam-(\ubc84\uc804)\/txts \uc744 \ud655\uc778 \ubc14\ub78c. <\/font>
    <\/font><\/li>\n
  3. \/etc\/pam.d\/ \ubc11\uc758 \ud30c\uc77c\uc744 \uc218\uc815\ud558\uba74, \uc218\uc815\ud55c \uc774\ud6c4 \ub85c\uadf8\uc778 \ud558\ub294 \uacc4\uc815\ubd80\ud130 \ubc14\ub85c \uc801\uc6a9 \ub428. \uac31\uc2e0 \ud558\ub294 \uba85\ub839\uc5b4 \uc5c6\uc74c.<\/font><\/li>\n
  4. \ub2f9\uc5f0\ud55c \ub9d0\uc774\uc9c0\ub9cc, \uc798\ubabb \uc218\uc815\ud558\uba74 \ub85c\uadf8\uc778 \ubabb\ud558\uac8c \ub418\ub294(\ucf58\uc194\ub85c\ub3c4!!) \uc0ac\ud0dc \ubc1c\uc0dd. -> \uc2f1\uae00\ubaa8\ub4dc\ub85c \ubd80\ud305\ud558\ub294 \uc218 \ubc16\uc5d0 \uc5c6\ub2e4. \uac1c\uc778 \ucef4\ud4e8\ud130\uba74 \ubb38\uc81c\uac00 \uc5c6\ub294\ub370 \uc11c\ube44\uc2a4 \uc911\uc778 \uc11c\ubc84\uc5d0\uc120 …\uc0dd\uac01\uc744 \ub9d0\uc790.<\/font>
    <\/font><\/li>\n
      \n
    1. \uadf8\ub7f0 \uc0ac\ud0dc\ub97c \ubc29\uc9c0\ud558\ub824\uba74 \ubaa8\ub4c8\uc774 \uc81c\ub300\ub85c \ub41c \uacbd\ub85c\uc5d0 \uc788\ub294\uc9c0 \ud655\uc778 \ud574\uc57c \ud568.<\/font><\/li>\n
        \n
      1. \/lib\/security\/ : 32bit \uc6b4\uc601\uccb4\uc81c\ub294 \uc5ec\uae30 \ubaa8\ub4c8\uc774 \uc788\uace0, 64bit \ubc84\uc804\ub3c4 \/lib\/security\/ \uc5d0\uc11c \/lib64\/security \ub85c<\/font> \uc2ec\ubcfc\ub9ad \ub9c1\ud06c\ub97c \uac70\ub294 \uacbd\uc6b0\uac00 \uc788\uc9c0\ub9cc(CentOS5),<\/font><\/li>\n
      2. CentOS6 64bit\ub294 \/lib\/security\uc5d0 \uc2ec\ubcfc\ub9ad \ub9c1\ud06c\uac00 \uc5c6\uc5c8\ub2e4\u2026 \uaf2d \uc9c1\uc811 \ud655\uc778\ud558\uace0 \uc801\uc6a9!!<\/font><\/li>\n
      3. \/lib64\/security\/ : 64bit \ubc84\uc804\uc6a9 pam \ubaa8\ub4c8\uc740 \uc5ec\uae30 \uc788\uc74c.<\/font><\/li>\n<\/ol>\n
      4. \uc81c\ub300\ub85c \ub3d9\uc791\ud558\ub294 \uac83\uc744 \uc9c1\uc811 \ud655\uc778\ud558\uae30 \uc804\uc5d0 root \uc5f0\uacb0\ub41c \ud130\ubbf8\ub110 \uc5f0\uacb0\uc744 \ub04a\uc9c0 \ub9d0 \uac83.<\/font><\/li>\n
      5. \uc801\uc6a9 \ud558\uace0 \ub098\uc11c \/var\/secure \uc640 \/var\/message \ub4f1\uc758 \ub85c\uadf8\ub97c \ud655\uc778<\/font><\/li>\n
      6. \uc774\ud558\uc758 \uba85\ub839\uc5b4\ub85c \uc2e4\ud328 \ud69f\uc218 \uce74\uc6b4\ud2b8 \ud558\ub294\uc9c0 \ud655\uc778<\/font><\/li>\n
          \n
        1. pam_tally \u2013u [\uacc4\uc815\uba85]<\/font><\/li>\n
        2. pam_tally2 \u2013u [\uacc4\uc815\uba85]<\/font><\/li>\n
        3. faillog \u2013u [\uacc4\uc815\uba85]<\/font><\/li>\n<\/ol>\n<\/ol>\n<\/ol>\n<\/p>\n

          \ud328\uc2a4\uc6cc\ub4dc \uc7a0\uae08, \uc784\uacc4 \uac12 \ub4f1\uc73c\ub85c \ubd88\ub9ac\ub294 \uae30\ub2a5\uc744 CentOS\uc5d0\uc11c \uc0ac\uc6a9\ud558\ub824\uba74 \/etc\/pam.d\/system-auth \ub97c \ud3b8\uc9d1\ud574\uc57c \ud55c\ub2e4(\uc815\ud655\ud788\ub294 \/etc\/pam.d\/system-auth-ac, system-auth\ub294 \uc2ec\ubcfc\ub9ad \ub9c1\ud06c\uc774\ub2e4.).<\/font><\/p>\n<\/p>\n

          \uc774 \uae30\ub2a5\uc740 \ud328\uc2a4\uc6cc\ub4dc \uc77c\uc815 \ud69f\uc218 \uc785\ub825\ud588\ub294\ub370\ub3c4 \ub85c\uadf8\uc778 \uc2e4\ud328 \uc2dc, \ud574\ub2f9 \uacc4\uc815\uc744 \uc77c\uc815\uc2dc\uac04 \ud639\uc740 \uc601\uad6c\ud788 \uc7a0\uad88, \uc774\ud6c4 \uc81c\ub300\ub85c \ub41c \ud328\uc2a4\uc6cc\ub4dc \uc785\ub825\ud574\ub3c4 \ub85c\uadf8\uc778 \ud560 \uc218 \uc5c6\ub3c4\ub85d \ub9cc\ub4dc\ub294 \uc124\uc815\uc774\ub2e4.<\/font><\/p>\n<\/p>\n

          \ubb34\uc2dd \uacf5\uaca9(bruto force)\uc744 \ucc28\ub2e8\ud558\ub294 \ubc29\ubc95\uc758 \ud558\ub098\uac00 \ub418\uaca0\ub2e4.<\/font><\/p>\n<\/p>\n

          \ub300\ucda9 \uc778\ud130\ub137 \uac80\uc0c9\ud574\uc11c \ud574\ub2f9 \uae30\ub2a5\uc744 \uc801\uc6a9\ud558\ub824 \ubcf4\ub2c8 2012\ub144 12\uc6d4 \ud604\uc7ac\uc640 \ub108\ubb34 \ub2e4\ub978 \ub0b4\uc6a9\uc774 \ub9ce\uc558\ub2e4.<\/font><\/p>\n<\/p>\n

          \n

          auth required \/lib\/security\/pam_tally.so no_magic_root
          account required \/lib\/security\/pam_tally.so deny=4 rock_time=120 no_magic_root reset <\/font><\/p>\n<\/blockquote>\n

          \uc774\ub7f0 \uc2dd\uc73c\ub85c \uc801\uc6a9\ud558\ub77c\ub294 \uae00\uc774 \ub9ce\uc740\ub370, \uc801\uc5b4\ub3c4 pam-0.99.6.2-6.el5_5.2 \uc5d0\uc120 reset \uacfc no_magic_root \ub780 \uc635\uc158\uc740 \uc5c6\uc73c\uba70, \uc800\ub7f0 \uc635\uc158 \uc801\uc6a9 \uc2dc \/var\/log\/message \ud639\uc740 \/var\/log\/secure \uc5d0 unknown option \uc774\ub77c\ub294 \ub85c\uadf8\uac00 \ucc0d\ud78c\ub2e4.<\/font><\/p>\n<\/p>\n

          \n
          #%PAM-1.0\n# This file is auto-generated.\n# User changes will be destroyed the next time authconfig is run.\nauth        required      pam_env.so\nauth        required      pam_tally.so onerr=fail deny=2 lock_time=5 unlock_time=5\naccount     required      pam_tally.so onerr=fail\nauth        sufficient    pam_unix.so nullok try_first_pass\nauth        requisite     pam_succeed_if.so uid >= 500 quiet\nauth        required      pam_deny.so\n\naccount     required      pam_unix.so\naccount     sufficient    pam_succeed_if.so uid < 500 quiet\naccount     required      pam_permit.so\n\npassword requisite pam_cracklib.so retry=3 minlen=8 lcredit=-2 ucredit=0 dcredit=0 ocredit=-1\npassword    sufficient    pam_unix.so md5 shadow nullok try_first_pass use_authtok\npassword    required      pam_deny.so\n\nsession     optional      pam_keyinit.so revoke\nsession     required      pam_limits.so\nsession     [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid\nsession     required      pam_unix.so<\/font><\/pre>\n<\/blockquote>\n
          <\/pre>\n
          \uc704 \uc124\uc815\uc744 \uc801\uc6a9\ud558\uba74<\/font><\/pre>\n
            \n
          1. 3\ubc88 \ud328\uc2a4\uc6cc\ub4dc \ud2c0\ub9ac\uba74 5\ucd08\uac04 \ucc28\ub2e8 \/ 5\ucd08 \ud6c4 \ud574\uc81c(unlock_time=5 \ub97c \uc548 \ud558\ub2c8 \uc7a0\uae08\uc774 \uc548 \ud480\ub838\uc74c)<\/font><\/li>\n
          2. \ud328\uc2a4\uc6cc\ub4dc \ubcf5\uc7a1\ub3c4 \uc124\uc815, \ucd5c\uc18c\uae38\uc774 8\uc790, \uc18c\ubb38\uc790 \ub450 \uae00\uc790 \uc774\uc0c1, \uc54c\ud30c\ubcb3 \uc544\ub2cc \uae00\uc790 \ucd5c\uc18c \ud55c \uae00\uc790 \uc788\uc5b4\uc57c \ud568.<\/font><\/li>\n<\/ol>\n
            \ubb38\uc81c\ub294 pam_tally2.so \uc778\ub370, \uc774\uac74 \uc5b4\ub5bb\uac8c \uc801\uc6a9\ud574\uc57c \ud558\ub294\uc9c0 \ubaa8\ub974\uaca0\ub2e4. man pam_tally2 \ud574\ubd24\ub294\ub370 \uac70\uae30 \uc124\uc815 \ubcf4\uace0 \ud574\ubd10\ub3c4 \uc7a0\uae30\uc9c8 \uc54a\ub294\ub2e4.<\/font><\/p>\n
            \uc774 \ubb38\uc81c \ubc1c\uc0dd\ud55c \uc11c\ubc84\uac00 CentOS6\uc600\ub294\ub370, sshd\uc5d0 \ub300\ud574 \uc7a0\uae30\uc9c0 \uc54a\uae38\ub798 \/etc\/pam.d\/<\/font><\/font><\/font>system-auth-ac\uac00 \uc544\ub2cc \/etc\/pam.d\/sshd \uc5d0 \uc801\uc6a9\ud588\ub354\ub2c8 \uc798 \ub41c\ub2e4.;;<\/font><\/font><\/font>
            <\/font><\/p>\n","protected":false},"excerpt":{"rendered":"
            \uc774 \uae00\uc740 CentOS5 32bit \uae30\uc900\uc73c\ub85c \uc4f0\uc600\ub2e4. pam\uc758 \uae30\ubcf8 \uac1c\ub150 CentOS\ub97c \uae30\uc900\uc73c\ub85c \uc124\uba85\ud568 \uc778\ud130\ub137\uc5d0\uc11c \uac80\uc0c9\ud560 \ub0b4\uc6a9\uc744 \uc801\uc6a9\ud558\uc9c0 \ub9c8\ub77c. \ubc84\uc804\ubcc4\ub85c \uc635\uc158\uc774 \ub2e4\ub974\uae30 \ub54c\ubb38\uc784. \/usr\/share\/doc\/pam-(\ubc84\uc804)\/txts \uc744 \ud655\uc778 \ubc14\ub78c. \/etc\/pam.d\/ \ubc11\uc758 \ud30c\uc77c\uc744 \uc218\uc815\ud558\uba74, \uc218\uc815\ud55c \uc774\ud6c4 \ub85c\uadf8\uc778 \ud558\ub294 \uacc4\uc815\ubd80\ud130 \ubc14\ub85c \uc801\uc6a9 \ub428. \uac31\uc2e0 \ud558\ub294 \uba85\ub839\uc5b4 \uc5c6\uc74c. \ub2f9\uc5f0\ud55c \ub9d0\uc774\uc9c0\ub9cc, \uc798\ubabb \uc218\uc815\ud558\uba74 \ub85c\uadf8\uc778 \ubabb\ud558\uac8c \ub418\ub294(\ucf58\uc194\ub85c\ub3c4!!) \uc0ac\ud0dc \ubc1c\uc0dd. -> \uc2f1\uae00\ubaa8\ub4dc\ub85c \ubd80\ud305\ud558\ub294 \uc218 \ubc16\uc5d0 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[],"tags":[86],"class_list":["post-280","post","type-post","status-publish","format-standard","hentry","tag-gnu-linux"],"_links":{"self":[{"href":"https:\/\/mini.jellypo.pe.kr\/wp\/index.php?rest_route=\/wp\/v2\/posts\/280","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mini.jellypo.pe.kr\/wp\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mini.jellypo.pe.kr\/wp\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mini.jellypo.pe.kr\/wp\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mini.jellypo.pe.kr\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=280"}],"version-history":[{"count":0,"href":"https:\/\/mini.jellypo.pe.kr\/wp\/index.php?rest_route=\/wp\/v2\/posts\/280\/revisions"}],"wp:attachment":[{"href":"https:\/\/mini.jellypo.pe.kr\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=280"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mini.jellypo.pe.kr\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=280"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mini.jellypo.pe.kr\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=280"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}