Actions
Feature #21661
closedSecure the BE login - Blacklist ips
Status:
Closed
Priority:
Should have
Assignee:
-
Category:
-
Target version:
-
Start date:
2009-11-24
Due date:
% Done:
0%
Estimated time:
PHP Version:
4.3
Tags:
Complexity:
Sprint Focus:
Description
Add an option to blacklist ips for a configurable timeperiod and a configurable amount of time.
(issue imported from #M12724)
Updated by Mathias Schreiber almost 10 years ago
- Tracker changed from Bug to Feature
- Description updated (diff)
- Status changed from New to Closed
- Target version deleted (
0)
should be handled by the webserver.
Updated by Nikolas Hagelstein almost 10 years ago
If i remember correctly i was fileing this and an bunch of other security related tickets to make typo3 at least base BSI compliant. The orignal ticket was actually not only about locking out an ip (which can be handle by webserver or fw of course) but about locking out a certain ip (read as client - identified on whatever) upon a certain amount of login failures (see #21658) for a given amount of time.
Just to clearify things
Updated by Helmut Hummel over 8 years ago
Mathias Schreiber wrote:
should be handled by the webserver.
actually not neccessarily
Actions