Prevent bruteforce attacks on administration login

Comments (5)

1. 

   SH reporter

   ref #441 initial implementation of login policy (admin)

   → <<cset 75be1e492d1a>>

   • 2018-10-04T09:38:59+00:00
2. 

   SB

   Is brute force prevention for admin login now part of this? I seem to remember reading on the change log something about this being done already?

   • 2018-12-20T15:43:57+00:00
3. 

   SH reporter

   Yep, there is "slowing" protection implemented. After couple invalid logins user(=ip) will need to wait some time. Future plan is to extend it to dovecot to have unified protection...

   • 2018-12-20T17:06:29+00:00
4. 

   SB

   Fantastic, thank you

   • 2019-02-08T21:20:09+00:00
5. 

   SH reporter

   • changed status to closed

   • 2020-09-28T08:28:01+00:00
6. Log in to comment