I’m managing a SLES12 SP5 server, and am trying to employ the tactics in a STIG finding about delaying failed logins, e.g.:
This, and other sources, talk about enabling a PAM module called pam_faildelay.so.
On my server, I see what looks like the module in the core ‘pam’ RPM:
10-153-30-56:~ # rpm -qf /lib64/security/pam_faildelay.so
pam-1.1.8-24.49.1.x86_64
but when I use ‘pam-config --list-modules’ to list supported modules, ‘faildelay’ is not there.
Does anyone have any advice?