Home > mailing lists

Re: Locking out a user after several failed login attempts - Mailing list pgsql-novice

From	Tom Lane
Subject	Re: Locking out a user after several failed login attempts
Date	July 1, 2011 22:51:42
Msg-id	7068.1309560694@sss.pgh.pa.us Whole thread Raw
In response to	Re: Locking out a user after several failed login attempts ("mark" <dvlhntr@gmail.com>)
List	pgsql-novice

Tree view

"mark" <dvlhntr@gmail.com> writes:
>> From: pgsql-novice-owner@postgresql.org [mailto:pgsql-novice-
>> owner@postgresql.org] On Behalf Of Jean-Yves F. Barbier
>> So, you just have to add a counter to your login table:

> That might be a ok on a small application with a limited number of users. A few thousand login attempts per min and
youare probably going to wish the counter lived outside of your RDBMS.  

Usually, when somebody asks for this or related security-policy hacks,
we suggest using PAM for authentication.  There are already PAM modules
for practically any reasonable password policy, so why reinvent the
wheel ...

            regards, tom lane

pgsql-novice by date:

From: Richard Broersma
Date: 01 July 2011, 13:28:16
Subject: Re: problem

From: "Jaime Casanova"
Date: 04 July 2011, 15:12:12
Subject: Re: scheduling of index rebuild , analyze , etc...

Re: Locking out a user after several failed login attempts - Mailing list pgsql-novice

Previous

Next