Re: RFC: changes to default password strength checks in pam_unix

On Tue, Sep 04, 2007 at 12:31:15PM +0300, Lars Wirzenius wrote:

I'm sure it does work great. Can you work on making sure [fail2ban] is the
default in lenny if openssh-server is installed?

Keep in mind that, by design, fail2ban opens up a denial-of-servicevulnerability, especially with the proliferation of NAT routers.

It's not something that should be used without people being aware of whatit does.


--
Dwayne C. Litzenberger <dlitz@dlitz.net>

Reply to:

References:
- RFC: changes to default password strength checks in pam_unix
  - From: Steve Langasek <vorlon@debian.org>
- Re: RFC: changes to default password strength checks in pam_unix
  - From: Lars Wirzenius <liw@iki.fi>
- Re: RFC: changes to default password strength checks in pam_unix
  - From: John Kelly <jak@isp2dial.com>
- Re: RFC: changes to default password strength checks in pam_unix
  - From: Lars Wirzenius <liw@iki.fi>