search

Solutions-Nitriques / anti_brute_force

Secure your Symphony CMS login page against brute force attacks
http://symphonyextensions.com/extensions/anti_brute_force/
Other
10 stars 12 forks source link

White list don't works as expected. #12

Closed toledox82 closed 11 years ago

toledox82 commented 11 years ago

I add 127.0.0.1 for White list and try more than 5 times force error pass. Ok, don't block my ip. But when I try correct pass, page refresh and can't login.

nitriques commented 11 years ago

I do not understand you request... 127.0.0.1 is not a routable address, so this will only be valid if the server is on your local machine, or if you access the website directly from your server.

Can you try this with your external IP address and confirm if the bug is still present ?

nitriques commented 11 years ago

Just tested and it seems your right. Let me check this...

nitriques commented 11 years ago

Do you get any warning ? Or just can't login ?

nitriques commented 11 years ago

Can you please try the new version in the dev branch please ? The call to isWhiteListed was missing...

nitriques commented 11 years ago

Please confirm that when using a non-whitelisted IP, it stills blocks the user...

toledox82 commented 11 years ago

Resolved! =) I tested on localhost.

nitriques commented 11 years ago

Great! I will merge it right away! Thanks for you input. Do not hesitate to report anything that you think is abnormal.