public inbox for [email protected]
help / color / mirror / Atom feedCredcheck max_auth_failure
3+ messages / 2 participants
[nested] [flat]
* Credcheck max_auth_failure
@ 2025-01-09 05:27 Teja Jakkidi <[email protected]>
0 siblings, 1 reply; 3+ messages in thread
From: Teja Jakkidi @ 2025-01-09 05:27 UTC (permalink / raw)
To: pgsql-admin <[email protected]>
Hello Admins,
We are trying to setup password policies on open source Postgres 14 (on SUSE Linux) using credcheck on an instance that has got stand by setup on other server.
On primary, Installed the binaries, created the extension and enabled below parameter:
credcheck.max_auth_failure to 3;
1. The parameter is working as expected on primary and banning the id in the 3rd attempt with wrong password.
However, I am not able to figure out how to get the banned user back to working. Restarting instance will get the banned user working but restarting whole instance to activate one user is not a feasible solution.
2. The same parameter is not working on the stand by instance. Even after 3 failed attempts user is still active.
Please let me know if you are aware of any solutions.
Thanks,
J. Teja.
^ permalink raw reply [nested|flat] 3+ messages in thread
* Re: Credcheck max_auth_failure
@ 2025-01-09 05:32 David G. Johnston <[email protected]>
parent: Teja Jakkidi <[email protected]>
0 siblings, 0 replies; 3+ messages in thread
From: David G. Johnston @ 2025-01-09 05:32 UTC (permalink / raw)
To: Teja Jakkidi <[email protected]>; +Cc: pgsql-admin <[email protected]>
On Wednesday, January 8, 2025, Teja Jakkidi <[email protected]>
wrote:
>
> 1. The parameter is working as expected on primary and banning the id in
> the 3rd attempt with wrong password.
> However, I am not able to figure out how to get the banned user back to
> working. Restarting instance will get the banned user working but
> restarting whole instance to activate one user is not a feasible solution.
>
>
You should read its docs. It discusses this.
https://github.com/HexaCluster/credcheck?tab=readme-ov-file#authentication-failure-ban
David J.
^ permalink raw reply [nested|flat] 3+ messages in thread
* Re: Credcheck max_auth_failure
@ 2025-01-09 06:19 Teja Jakkidi <[email protected]>
0 siblings, 0 replies; 3+ messages in thread
From: Teja Jakkidi @ 2025-01-09 06:19 UTC (permalink / raw)
To: David G. Johnston <[email protected]>; +Cc: pgsql-admin <[email protected]>
--Apple-Mail-05F27855-768B-49B2-8E6F-0EA81A9A0503
Content-Type: text/html;
charset=utf-8
Content-Transfer-Encoding: quoted-printable
<html><head><meta http-equiv=3D"content-type" content=3D"text/html; charset=3D=
utf-8"></head><body dir=3D"auto"><div dir=3D"ltr">=EF=BB=BF<meta http-equiv=3D=
"content-type" content=3D"text/html; charset=3Dutf-8">Thank you, David.<div>=
<br></div><div>Regards,</div><div><div dir=3D"ltr"><div>J. Teja.</div></div>=
<div dir=3D"ltr"><br><blockquote type=3D"cite">On Jan 8, 2025, at 9:32=E2=80=
=AFPM, David G. Johnston <[email protected]> wrote:<br><br></=
blockquote></div><blockquote type=3D"cite"><div dir=3D"ltr">=EF=BB=BFOn Wedn=
esday, January 8, 2025, Teja Jakkidi <<a href=3D"mailto:teja.jakkidi05@gm=
ail.com">[email protected]</a>> wrote:<br><blockquote class=3D"gma=
il_quote" style=3D"margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left=
:1ex"><br>
1. The parameter is working as expected on primary and banning the id in the=
3rd attempt with wrong password.<br>
However, I am not able to figure out how to get the banned user back to work=
ing. Restarting instance will get the banned user working but restarting who=
le instance to activate one user is not a feasible solution.<br><br>
</blockquote><div><br></div><div>You should read its docs. It discusse=
s this.</div><div><br></div><div> <a href=3D"https://github.com/HexaClu=
ster/credcheck?tab=3Dreadme-ov-file#authentication-failure-ban">https://gith=
ub.com/HexaCluster/credcheck?tab=3Dreadme-ov-file#authentication-failure-ban=
</a></div><div><br></div><div>David J.</div><div><br></div>
</div></blockquote></div></div></body></html>=
--Apple-Mail-05F27855-768B-49B2-8E6F-0EA81A9A0503--
^ permalink raw reply [nested|flat] 3+ messages in thread
end of thread, other threads:[~2025-01-09 06:19 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed)
-- links below jump to the message on this page --
2025-01-09 05:27 Credcheck max_auth_failure Teja Jakkidi <[email protected]>
2025-01-09 05:32 ` David G. Johnston <[email protected]>
2025-01-09 06:19 Re: Credcheck max_auth_failure Teja Jakkidi <[email protected]>
This inbox is served by agora; see mirroring instructions
for how to clone and mirror all data and code used for this inbox