System Administration Guide: Network Services

ProcedureHow to Control the Number of Invalid Login Attempts

If a login to the FTP server fails because of a problem such as misspelling required information, login is usually repeated. The user is allowed a specific number of consecutive login attempts before a message is logged to the syslog file. At that point, the user is disconnected. You can set a failure limit on the number of login attempts by following steps in the next procedure.

  1. Become superuser or assume an equivalent role.

    Roles contain authorizations and privileged commands. For more information about roles, see Configuring RBAC (Task Map) in System Administration Guide: Security Services. To configure a role with the Primary Administrator profile, see Chapter 2, Working With the Solaris Management Console (Tasks), in System Administration Guide: Basic Administration.

  2. Add the following entries to the ftpaccess file.

    loginfails n

    Keyword that is used to assign the number of login failures that are permitted before the FTP connection is terminated


    Number of times a login can fail

Example 28–3 Controlling the Number of Invalid Login Attempts

loginfails 10

The preceding example states that the user is disconnected from the FTP server after 10 failed login attempts.