Has anyone checked how the CouchCMS login reacts to brute-force attack?
Is there a feature implemented that limits the number of login attempts?
Is there a feature implemented that limits the number of login attempts?
Forum for discussing general topics related to Couch.
2 posts
Page 1 of 1
-
- JD
- Registered User
-
- Posts: 70
- Joined: Sat Feb 28, 2015 1:50 am
-
- cheesypoof
- Registered User
-
- Posts: 737
- Joined: Thu Oct 13, 2011 2:48 am
Yes @JD, login attempts are rate-limited. See the login function in auth/auth.php - https://github.com/CouchCMS/CouchCMS/blob/master/couch/auth/auth.php#L134. There is also some older discussion of it at viewtopic.php?p=13292#p13292.
2 posts
Page 1 of 1