Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Adaptive allowance of failed attempts #76

Open
codeling opened this issue Mar 19, 2014 · 2 comments
Open

Adaptive allowance of failed attempts #76

codeling opened this issue Mar 19, 2014 · 2 comments
Assignees
@codeling
Labels
enhancement
Milestone
BFStop 2.0

Comments

@codeling
Copy link
Owner

As elaborated a bit in this comment, one or more policies determining an adaptive number of allowed failed attempts might be useful against distributed brute force attacks.
@codeling codeling added this to the BFStop 1.4.0 milestone Mar 19, 2014
@codeling codeling self-assigned this Mar 19, 2014
@codeling codeling mentioned this issue Jan 27, 2015
Closed
@codeling
Copy link
Owner Author

Current Ideas for adapting the allowed numbers of failed logins include:

  • if IP is whitelisted for given user (whitelisted -> allow more attempts, see also white_list #24 (comment))
  • if geolocation of IP is close to that of the IP of the server (farther away -> allow less attempts)
  • if a common user name (e.g. 'admin') is used (common user name is used -> allow less attempts)
  • current overall amount of failed logins (e.g. in the last hour) (if more overall failed logins -> reduce number of attempts before blocking)
  • if IP does not resolve to a proper host name via nslookup, allow less atempts (block IP addresses that do not yield a host name by nslookup #103)

@codeling codeling mentioned this issue Jun 28, 2015
Closed
@codeling codeling mentioned this issue Aug 5, 2015
Closed
@codeling codeling mentioned this issue Sep 15, 2015
Closed
@codeling codeling mentioned this issue Mar 3, 2016
Closed
@codeling codeling modified the milestones: BFStop 1.5.0, BFStop 1.4.0 Jun 22, 2016
@codeling codeling mentioned this issue Feb 14, 2017
Open
@codeling codeling modified the milestones: BFStop 1.6.0, BFStop 1.5.0 Mar 8, 2017
@codeling
Copy link
Owner Author

codeling commented Nov 3, 2021
edited
Loading

This would more or less follow similar ideas as Risk-Based Authentication (RBA).

@codeling codeling mentioned this issue Nov 22, 2023
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@codeling codeling

Labels
enhancement
Projects
None yet
Milestone
BFStop 2.0
Development

No branches or pull requests
1 participant
@codeling