Hello all
is it possible to block/deny the access for a user which has typed 5 times the wrong password?
So he can´t login for 5min?
Otherwise Brute-Force Attack is possbile...
Thanks for your help
Regards
Rey90
block user at too many wrong logins
Moderator: crythias
block user at too many wrong logins
Produktiv: OTRS: 4.0.10
Testing": OTRS: 5
OS: Debian 7
Apache2/MySQL 5
Testing": OTRS: 5
OS: Debian 7
Apache2/MySQL 5
-
Wolfgangf
- Znuny ninja
- Posts: 1029
- Joined: 13 Apr 2009, 12:26
- Znuny Version: 6.0.13
- Real Name: Wolfgang Fürtbauer
- Company: PBS Logitek GmbH
- Location: Pinsdorf
Re: block user at too many wrong logins
you'd want to implement fail2ban probably ...
That's at least how I do it
BR
That's at least how I do it
BR
Produktiv:
OTRS 6.0.13/ ITSM 6.0.13
OS: SUSE Linux (SLES 12, Leap), MySql 5.5.x, 5.6.x
Windows 2012 AD Integration (agents and customers), Nagios integration (incidents, CMDB), Survey, TimeAccounting
OTRS 6.0.13/ ITSM 6.0.13
OS: SUSE Linux (SLES 12, Leap), MySql 5.5.x, 5.6.x
Windows 2012 AD Integration (agents and customers), Nagios integration (incidents, CMDB), Survey, TimeAccounting
Re: block user at too many wrong logins
thanks. could you please explain this a little bit and maybe post a link
Produktiv: OTRS: 4.0.10
Testing": OTRS: 5
OS: Debian 7
Apache2/MySQL 5
Testing": OTRS: 5
OS: Debian 7
Apache2/MySQL 5
-
Wolfgangf
- Znuny ninja
- Posts: 1029
- Joined: 13 Apr 2009, 12:26
- Znuny Version: 6.0.13
- Real Name: Wolfgang Fürtbauer
- Company: PBS Logitek GmbH
- Location: Pinsdorf
Re: block user at too many wrong logins
here's the link http://www.fail2ban.org/wiki/index.php/Main_Page
Idea is pretty simple: check logfiles for pattern and if a configured number of this pattern occor in the logfile: block the user
BR
Idea is pretty simple: check logfiles for pattern and if a configured number of this pattern occor in the logfile: block the user
BR
Produktiv:
OTRS 6.0.13/ ITSM 6.0.13
OS: SUSE Linux (SLES 12, Leap), MySql 5.5.x, 5.6.x
Windows 2012 AD Integration (agents and customers), Nagios integration (incidents, CMDB), Survey, TimeAccounting
OTRS 6.0.13/ ITSM 6.0.13
OS: SUSE Linux (SLES 12, Leap), MySql 5.5.x, 5.6.x
Windows 2012 AD Integration (agents and customers), Nagios integration (incidents, CMDB), Survey, TimeAccounting
Re: block user at too many wrong logins
thanks for the quick answer, any other possiblities?
Produktiv: OTRS: 4.0.10
Testing": OTRS: 5
OS: Debian 7
Apache2/MySQL 5
Testing": OTRS: 5
OS: Debian 7
Apache2/MySQL 5
Re: block user at too many wrong logins
you can change the behaviour via sysconfig in "PreferencesGroups###Password"
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
Re: block user at too many wrong logins
i can only change the password lengh and charakters requiered, but there is no option: "Block after x wrong logins" or im i wrong?
Produktiv: OTRS: 4.0.10
Testing": OTRS: 5
OS: Debian 7
Apache2/MySQL 5
Testing": OTRS: 5
OS: Debian 7
Apache2/MySQL 5
Re: block user at too many wrong logins
there is PasswordMaxLoginFailed for agents, there is no such setting for customers yet
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
Re: block user at too many wrong logins
ok thanks for that info. a option for the customer would be nice.. i will post it @otrsideas
Produktiv: OTRS: 4.0.10
Testing": OTRS: 5
OS: Debian 7
Apache2/MySQL 5
Testing": OTRS: 5
OS: Debian 7
Apache2/MySQL 5