a

2026-05-11 09:15:08 +02:00
parent 9bec2b9e42
commit 404ee3fec4
641 changed files with 416825 additions and 0 deletions
@@ -0,0 +1,16 @@
+#!/usr/bin/env bash
+
+faillock_conf="/etc/security/faillock.conf"
+expected_value=5
+if grep -Pq '^\s*#?\s*deny\s*=\s*([0-9]+)' "$faillock_conf"; then
+	current_value=$(grep -Eo '^\s*#?\s*deny\s*=\s*([0-9]+)' "$faillock_conf" | awk -F'=' '{print $2}' | tr -d ' ')
+else
+	echo "ERROR: deny is not set in $faillock_conf."
+	exit 1
+fi
+if ((current_value <= expected_value)); then
+	exit 0
+else
+	echo "ERROR: deny=$current_value is higher than $expected_value"
+	exit 1
+fi