Fork me on GitHub
Subscribe 2

Ticket #1110 (open enhancement)

Throttle failed login attempts

  • Created: 2017-10-06 09:34:19
  • Reported by: Franz
  • Assigned to: None
  • Milestone: None
  • Component: security
  • Priority: normal

Right now, we don't have any measure to prevent brute-force attacks on login. That means, the only limiting factor for such attacks is the passwords' strength.

Adding a throttle here would probably have to happen as an optional feature.

History

Franz 2017-10-06 14:00:04

As reported by Dhiraj Mishra (@mishradhiraj_).