phpgroupware-tracker
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Phpgroupware-tracker] [bug #5311] Too many bad logins does not block ac

From: nobody
Subject: [Phpgroupware-tracker] [bug #5311] Too many bad logins does not block account
Date: Thu, 25 Sep 2003 17:08:57 -0400
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.6a) Gecko/20030923 Firebird/0.6 StumbleUpon/1.73 
=================== BUG #5311: LATEST MODIFICATIONS ==================
http://savannah.gnu.org/bugs/?func=detailbug&bug_id=5311&group_id=509

Changes by: Anonymous user        Date: Thu 09/25/2003 at 17:08

------------------ Additional Follow-up Comments ----------------------------
Check! appreciate the attention to this.



pooh_



=================== BUG #5311: FULL BUG SNAPSHOT ===================


Submitted by: pooh_                   Project: phpGroupWare                 
Submitted on: Mon 09/15/2003 at 08:47
Category:  API - Admin                Bug Group:  0.9.16RC1                 
Severity:  5 - Major                  Priority:  Normal                     
Resolution:  None                     Assigned to:  skwashd                 
Status:  Open                         Component Version:  None              
Platform Version:  Linux - RedHat     Reproducibility:  Every Time          

Summary:  Too many bad logins does not block account

Original Submission:  Admin -> Site configuration;



You can set Max # of bad logins before IP gets blocked and

you can set max # of bad logins before Account gets blocked.



- If both set to zero the default back to 3. Why?

- Which setting has priority? cause the lowest# of attemps always wins right?

- If block account is set to lowest # of attemps, this results in ip blocking 
and the account is not deactivated!



An admin panel to directly unblock the IP and account would be preferable, 
cause now you have to delete the phpgw_access_log manually.

That's no fun when you're not at the console (and don't have  other means of 
accessing the db directly)



Follow-up Comments
*******************

-------------------------------------------------------
Date: Thu 09/25/2003 at 17:08       By: None
Check! appreciate the attention to this.



pooh_

-------------------------------------------------------
Date: Thu 09/25/2003 at 16:49       By: skwashd
Hi pooh_

1 - because it tests if the value is set, 0 = unset

2 and 3 - will look for you



Admin option, sorry that will have to wait for HEAD - new feature.



Hi lcdumais,



That is why it is an config option, for people using phpGW to store important 
information, 3 is the desired value.  Feel free to change the value on your 
install.

-------------------------------------------------------
Date: Thu 09/25/2003 at 15:12       By: lcdumais
I think the default Max # of bad logins before IP gets blocked and 

 max # of bad logins before Account gets blocked should be at least 10 and not 
3.










CC list is empty


No files currently attached


For detailed info, follow this link:
http://savannah.gnu.org/bugs/?func=detailbug&bug_id=5311&group_id=509

_______________________________________________
  Message sent via/by Savannah
  http://savannah.gnu.org/
reply via email to
[Prev in Thread] Current Thread [Next in Thread]