This repository has been archived by the owner on Feb 5, 2023. It is now read-only.
count and handle failed logins #4
Labels
Documentation
updates which required an update of the documentation
new Feature
new features
Security
security-bugs
Usability
changes to improve the usability of the code
Milestone
Feature-request
Description
To avoid brute-force-attacks against a user-account, there should be a counter for failed login-tries. After 3 failed login-tries there should be a forced wait time, which can be configured via config-file. Only after this timespan there should be login-try possible again. This should prevent brute-force attacks against a user-account.
The text was updated successfully, but these errors were encountered: