Bug #266: Login Anti-Brute Force deter
|Submitted||17th Oct 2013|
|Updated||1st Feb 2014|
|r392||01 Feb 2014 10:20:23 UTC||Disconnect user after a set number of failed login attempts (bug #266).|
EOSERV currently lets any connection spam password attempts as fast as the queue will allow. There should be an enforcement of attempts(config) and a disconnect afterwards. Might also be worth adding a warning to error.log when an IP triggers this so faggotry can be traced somewhat.
Please don't post unless you have something relevant to the bug to say.
Do not comment to say "thanks" or "fix this please".
Please log in to add comments. EOSERV Bug Tracker > Bug #266: Login Anti-Brute Force deter