Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
documentation:latest:bruteforceprotection [2020/02/25 19:17]
cmaudoux [With Incremental lock time]
documentation:latest:bruteforceprotection [2020/02/25 19:25] (current)
Line 15: Line 15:
  
 ==== Incremental lock time enabled ==== ==== Incremental lock time enabled ====
 +
 +You just have to activate it in the Manager :
 +
 Go in Manager, ''​General Parameters''​ » ''​Advanced Parameters''​ » ''​Security''​ » ''​Brute-force attack protection''​ »  Go in Manager, ''​General Parameters''​ » ''​Advanced Parameters''​ » ''​Security''​ » ''​Brute-force attack protection''​ » 
- ''​Incremental lock times''​ and set to ''​On''​. (DISABLED by default)+ ''​Incremental lock times''​ and set to ''​On''​. (DISABLED by default) ​or in ''​lemonldap-ng.ini''​ [portal] section: 
 +<file ini> 
 +[portal] 
 +bruteForceProtectionIncrementalTempo = 1 
 +</​file>​
  
 Lock time increases between each failed login attempt. ​ Lock time increases between each failed login attempt. ​
Line 30: Line 37:
 Max lock time value is used by this plugin if a lock time is missing (number of failed logins higher than listed lock time values). Lock time values can not be higher than max lock time. Max lock time value is used by this plugin if a lock time is missing (number of failed logins higher than listed lock time values). Lock time values can not be higher than max lock time.
 </​note>​ </​note>​
-==== Without ​Incremental lock time ====+==== Incremental lock time disabled ​====
 After ''​bruteForceProtectionMaxFailed''​ failed login attempts, user must wait ''​bruteForceProtectionTempo''​ seconds before trying to log in again. After ''​bruteForceProtectionMaxFailed''​ failed login attempts, user must wait ''​bruteForceProtectionTempo''​ seconds before trying to log in again.
 To modify waiting time (30 seconds by default), MaxAge between current and last stored failed login (300 seconds by default) or number of allowed failed login attempts (3 by default) edit ''​lemonldap-ng.ini''​ in [portal] section: To modify waiting time (30 seconds by default), MaxAge between current and last stored failed login (300 seconds by default) or number of allowed failed login attempts (3 by default) edit ''​lemonldap-ng.ini''​ in [portal] section: