1FAILLOG(8) System Management Commands FAILLOG(8)
2
6 faillog - display faillog records or set login failure limits
7
9 faillog [options]
10
12 faillog formats the contents of the failure log from /var/log/faillog
13 database. It also can be used for maintains failure counters and
14 limits. Run faillog without arguments display only list of user faillog
15 records who have ever had a login failure.
16
18 The options which apply to the faillog command are:
19 -a, --all
21 Display faillog records for all users.
22 -h, --help
24 Display help message and exit.
25 -l, --lock-time SEC
27 Lock account to SEC seconds after failed login.
28 -m, --maximum MAX
30 Set maximum number of login failures after the account is disabled
31 to MAX. Selecting MAX value of 0 has the effect of not placing a
32 limit on the number of failed logins. The maximum failure count
33 should always be 0 for root to prevent a denial of services attack
34 against the system.
35 -r, --reset
37 Reset the counters of login failures or one record if used with the
38 -u LOGIN option. Write access to /var/log/faillog is required for
39 this option.
40 -t, --time DAYS
42 Display faillog records more recent than DAYS. The -t flag overrides
43 the use of -u.
44 -u, --user LOGIN
46 Display faillog record or maintains failure counters and limits (if
47 used with -l, -m or -r options) only for user with LOGIN.
48
50 faillog only prints out users with no successful login since the last
51 failure. To print out a user who has had a successful login since their
52 last failure, you must explicitly request the user with the -u flag, or
53 print out all users with the -a flag.
54
56 /var/log/faillog
57 Failure logging file.
58
60 login(1), faillog(5).
61System Management Commands 07/30/2006 FAILLOG(8)