geronimo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Aaron Mulder (JIRA)" <>
Subject [jira] Created: (GERONIMO-419) Lockout after N failed logins
Date Tue, 02 Nov 2004 04:23:32 GMT
Lockout after N failed logins

         Key: GERONIMO-419
     Project: Apache Geronimo
        Type: New Feature
  Components: security  
    Versions: 1.0-M2    
    Reporter: Aaron Mulder
    Priority: Trivial

It would be nice if the default security realms supported locking an account after a certain
number of consecutive failed logins.  Lacking that, it would be nice if they supported a configurable
delay on a failed login attempt.  Both methods help defend against brute force login attacks.

This is a pretty low priority, but IMHO it still goes on the "nice to have" list.

This message is automatically generated by JIRA.
If you think it was sent incorrectly contact one of the administrators:
If you want more information on JIRA, or have a bug to report see:

View raw message