2018-11-26 14:15:43 +01:00
<!DOCTYPE html>
< html lang = "en" dir = "ltr" >
< head >
< meta charset = "utf-8" / >
< title > documentation:2.0:bruteforceprotection< / title >
< meta name = "generator" content = "DokuWiki" / >
2018-11-29 21:40:24 +01:00
< meta name = "robots" content = "noindex,nofollow" / >
2018-11-26 14:15:43 +01:00
< meta name = "keywords" content = "documentation,2.0,bruteforceprotection" / >
< link rel = "search" type = "application/opensearchdescription+xml" href = "lib/exe/opensearch.html" title = "LemonLDAP::NG" / >
< link rel = "start" href = "bruteforceprotection.html" / >
< link rel = "contents" href = "bruteforceprotection.html" title = "Sitemap" / >
< link rel = "stylesheet" type = "text/css" href = "lib/exe/css.php.t.bootstrap3.css" / >
<!-- //if:usedebianlibs
< link rel = "stylesheet" type = "text/css" href = "/javascript/bootstrap/css/bootstrap.min.css" / >
//elsif:useexternallibs
< link rel = "stylesheet" type = "text/css" href = "https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css" > < / script >
//elsif:cssminified
< link rel = "stylesheet" type = "text/css" href = "/static/bwr/bootstrap/dist/css/bootstrap.min.css" / >
//else -->
< link rel = "stylesheet" type = "text/css" href = "/static/bwr/bootstrap/dist/css/bootstrap.css" / >
<!-- //endif -->
< script type = "text/javascript" > / * < ! [ C D A T A [ * / v a r N S = ' d o c u m e n t a t i o n : 2 . 0 ' ; v a r J S I N F O = { " i d " : " d o c u m e n t a t i o n : 2 . 0 : b r u t e f o r c e p r o t e c t i o n " , " n a m e s p a c e " : " d o c u m e n t a t i o n : 2 . 0 " } ;
/*!]]>*/< / script >
< script type = "text/javascript" charset = "utf-8" src = "lib/exe/js.php.t.bootstrap3.js" > < / script >
<!-- //if:usedebianlibs
< script type = "text/javascript" src = "/javascript/jquery/jquery.min.js" > < / script >
//elsif:useexternallibs
< script type = "text/javascript" src = "http://code.jquery.com/jquery-2.2.0.min.js" > < / script >
//elsif:jsminified
< script type = "text/javascript" src = "/static/bwr/jquery/dist/jquery.min.js" > < / script >
//else -->
< script type = "text/javascript" src = "/static/bwr/jquery/dist/jquery.js" > < / script >
<!-- //endif -->
<!-- //if:usedebianlibs
< script type = "text/javascript" src = "/javascript/jquery-ui/jquery-ui.min.js" > < / script >
//elsif:useexternallibs
< script type = "text/javascript" src = "http://code.jquery.com/ui/1.10.4/jquery-ui.min.js" > < / script >
//elsif:jsminified
< script type = "text/javascript" src = "/static/bwr/jquery-ui/jquery-ui.min.js" > < / script >
//else -->
< script type = "text/javascript" src = "/static/bwr/jquery-ui/jquery-ui.js" > < / script >
<!-- //endif -->
< / head >
< body >
< div class = "dokuwiki export container" >
2018-11-29 21:40:24 +01:00
< h1 class = "sectionedit1" id = "brute_force_protection_addon" > Brute Force Protection Addon< / h1 >
< div class = "level1" >
2018-11-26 14:15:43 +01:00
< p >
bruteForceProtection plugin prevents brute force attack. Plugin DISABLED by default.
< / p >
< p >
After three failed login attempts, user must wait (30 seconds by default) before try to log in again.
< / p >
< p >
The aim of a brute force attack is to gain access to user accounts by repeatedly trying to guess the password of a user. If it is disabled, automated tools may submit thousands of password attempts in a matter of seconds.
< / p >
2018-11-29 21:40:24 +01:00
< / div >
<!-- EDIT1 SECTION "Brute Force Protection Addon" [1 - 456] -->
< h2 class = "sectionedit2" id = "configuration" > Configuration< / h2 >
2018-11-26 14:15:43 +01:00
< div class = "level2" >
< p >
To enable Brute Force Attack protection :
< / p >
< p >
Go in Manager, < code > General Parameters< / code > » < code > Advanced Parameters< / code > » < code > Security< / code > » < code > Brute-force attack protection< / code > and set to < code > On< / code > .
< / p >
< p >
To modify waiting time (30 seconds by default) before reAuthentication and MaxAge between current and last stored failed login (300 seconds by default) edit < code > lemonldap-ng.ini< / code > in section [portal]:
< / p >
< pre class = "code file ini" > < span class = "re0" > < span class = "br0" > [ < / span > portal< span class = "br0" > ] < / span > < / span >
< span class = "re1" > bruteForceProtectionTempo< / span > < span class = "sy0" > =< / span > < span class = "re2" > 30< / span >
< span class = "re1" > bruteForceProtectionMaxAge< / span > < span class = "sy0" > =< / span > < span class = "re2" > 300< / span > < / pre >
< / div >
2018-11-29 21:40:24 +01:00
<!-- EDIT2 SECTION "Configuration" [457 - ] --> < / div >
2018-11-26 14:15:43 +01:00
< / body >
< / html >