The options which apply to the faillog command are:
-a, --all
Display (or act on) faillog records for all users having an entry in the faillog database.
The range of users can be restricted with the -u option.
In display mode, this is still restricted to existing users but forces the display of the faillog
entries even if they are empty.
With the -l, -m, -r, -t options, the users' records are changed, even if the user does not exist on
the system. This is useful to reset records of users that have been deleted or to set a policy in
advance for a range of users.
-h, --help
Display help message and exit.
-l, --lock-secsSEC
Lock account for SEC seconds after failed login.
Write access to /var/log/faillog is required for this option.
-m, --maximumMAX
Set the maximum number of login failures after the account is disabled to MAX.
Selecting a MAX value of 0 has the effect of not placing a limit on the number of failed logins.
The maximum failure count should always be 0 for root to prevent a denial of services attack against
the system.
Write access to /var/log/faillog is required for this option.
-r, --reset
Reset the counters of login failures.
Write access to /var/log/faillog is required for this option.
-R, --rootCHROOT_DIR
Apply changes in the CHROOT_DIR directory and use the configuration files from the CHROOT_DIR
directory.
-t, --timeDAYS
Display faillog records more recent than DAYS.
-u, --userLOGIN|RANGE
Display faillog record or maintains failure counters and limits (if used with -l, -m or -r options)
only for the specified user(s).
The users can be specified by a login name, a numerical user ID, or a RANGE of users. This RANGE of
users can be specified with a min and max values (UID_MIN-UID_MAX), a max value (-UID_MAX), or a min
value (UID_MIN-).
When none of the -l, -m, or -r options are used, faillog displays the faillog record of the specified
user(s).
Install Now
PNG Icons
