Prevent bruteforce attacks on administration login
Issue #441
closed
ref #438
Comments (5)
-
reporter -
Is brute force prevention for admin login now part of this? I seem to remember reading on the change log something about this being done already?
-
reporter Yep, there is "slowing" protection implemented. After couple invalid logins user(=ip) will need to wait some time. Future plan is to extend it to dovecot to have unified protection...
-
Fantastic, thank you
-
reporter - changed status to closed
- Log in to comment
ref
#441initial implementation of login policy (admin)→ <<cset 75be1e492d1a>>