-
Brute-force protection
--
Currently the authentication is brute-forceble as in, no limits on the the amount of attempts or the period wherein it's taken place. Meaning an attacker could try guessing…
-
We need to rework the recommend action for SFTP, as well as adding additional info.
Here's the existing Recommended Action:
Title: Consider moving to SFTP.
Body: There appears to be an FTP serv…
-
Hi,
I'm using react-native-touch-id in my app, and I find a problems.
First I authenticate failed three times, then I still authenticate failed twice and it will return RCTTouchIDUnknownError. Then,…
-
Hi,
The admin interface is publicly accessible. That makes it vulnerable for Brute Force Attacks.
Since miab should be easy to use a pre-basic auth or an ip restriction is very inconvenient. Further…
-
It'd be nice if the `loginAction()` function would always call one of two hooks (if set, of course); one for a successful login attempt and one for a failed login attempt.
-
```
enhancement request
check : http://code.google.com/p/inspathx/
basic tool working.
require : local copy of website and remote site url.
will try to access all pages directly and see if …
-
As each router (http/fast/raw) maintains a very big list of statistics, we can improve things to support some anti-dos pattern.
The first feature could be a concurrent-requests limiter. Basically an …
unbit updated
11 years ago
-
Some customers have security concerns and need to know how service customer center users are authenticated.
This page should detail how service persons are created with a corresponding user_candid…
-
## CVE-2021-38153 - Medium Severity Vulnerability
Vulnerable Library - kafka-clients-2.4.0.jar
Library home page: https://kafka.apache.org
Path to dependency file: /server/plugins/kafka-event-sink/…
-
Hi,
How can I Specifies the number of failed login attempts before the user is locked and unlock after a time that I want?
Can anyone help me?