| From: | "Wolff, Ken L" <ken(dot)l(dot)wolff(at)lmco(dot)com> |
|---|---|
| To: | "pgsql-general(at)lists(dot)postgresql(dot)org" <pgsql-general(at)lists(dot)postgresql(dot)org> |
| Subject: | Lock Postgres account after X number of failed logins? |
| Date: | 2020-05-05 14:13:38 |
| Message-ID: | 61463e206b7c4c0ca17b03a59e890b78@lmco.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Hi, everyone. Wondering if there's a way in PostgreSQL to automatically lock accounts after a number of failed logins (a security requirement for my organization). I've been investigating this for a while and the only reference I've found is to write a hook: https://wiki.postgresql.org/images/e/e3/Hooks_in_postgresql.pdf , which is a little more involved than I'd hoped. Was hoping there was something native available within PostgreSQL.
Locking accounts after X number of failed logins is an excellent way to defeat brute force attacks, so I'm just wondering if there's a way to do this, other than the aforementioned hook.
This is my first time using this mail list so apologies in advance if I'm not following etiquette or doing something incorrectly.
Thanks in advance.
Ken W
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Adrian Klaver | 2020-05-05 14:28:18 | Re: Lock Postgres account after X number of failed logins? |
| Previous Message | Peter | 2020-05-05 10:45:07 | Re: 12.2: Howto check memory-leak in worker? |