Red Hat Bugzilla – Bug 234308
pam_tally faillog.h has a limited fail_line field.
Last modified: 2007-11-16 20:14:55 EST
Description of problem:
When using faillog, the IP or hostname information gets truncated with strncpy()
on the 12 first characters due to the sizeof() from its definition.
Used the 52 present in rawhide. This is just part of the problem on write, read
(shadow-utils) need change as well for faillog to read it, since both have the
same header I'm sending a parallel bug blocker of this one against shadow-utils.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Setup a pam stack to use pam_tally.so
2. Fail an authentication
fail line truncated.
At least the IP address.
patch from rawhide.
Created attachment 151117 [details]
This cannot be changed due to breaking compatibility with existing faillog files.
The correct way is to backport pam_tally2.so from RHEL5.
*** This bug has been marked as a duplicate of 228044 ***