Add IP address to FAILED LOGIN for Fail2Ban #3285 #50 #653

[chris001]

Add IP address to FAILED LOGIN log entry so that Fail2Ban will be able to detect hackers and ban their IP from logging in for some time.
In response to requests in issue #3285, #50, and #653, and possibly others over the years.

Description

Security fix for the age of widespread hacking and data theft.

Motivation and Context

Hackers could previously try logging in with a billion passwords and eventually guess it right and break in.

How To Test This

Try to login with incorrect password.
Look at PHP log for FAILED LOGIN entry.
It should say the IP address on that log line.
Users will need to add a setting to Fail2Ban which is a string to match in the log, and cause Fail2Ban to increase a counter for the SuiteCRM app, so that X failed logins from the same IP, within Y minutes, will cause Fail2Ban to ban the hacker's IP address for Z minutes.

Types of changes

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to change)

Final checklist

• My code follows the code style of this project found here.
• My change requires a change to the documentation.
• I have read the How to Contribute guidelines.

[Dillon-Brown]

please log ip adress

[pgorod]

Let's not forget this PR by @JimMackin that is merged into a feature branch, but not master...

#2897 Add user lockout and user unlock options

@sergio91pt I remember you mentioned how susceptible SuiteCRM was to brute-force attacks a while ago, you might be interested in this PR too.

Any special reason why this isn't merged, or is it just lack of time? Maybe it is simply forgotten, because it doesn't show as an open PR (already merged)...

[pgorod]

@daniel-samson @gymad maybe now is a good time to merge this one?

And Jim Mackin's #2897 ?

[Dillon-Brown]

Superseded by merged PR #4190