Project

General

Profile

Actions
Copy link

Task #65907

closed

Increase backend responsiveness on failed BE logins

Added by Steffen Müller about 9 years ago. Updated about 9 years ago.

Status:
Rejected
Priority:
Should have
Assignee:
-
Category:
-
Target version:
-
Start date:
2015-03-22
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
7
PHP Version:
Tags:
Complexity:
Sprint Focus:

Description

If you login to the backend with wrong credentials, the LoginController forces a 5 seconds sleep.

This is annoying for human BE user which tend to make typos and for automated test which try to test backend logins failures.

Let's remove it.

Actions
Copy link
 #1

Updated by Gerrit Code Review about 9 years ago

  • Status changed from New to Under Review

Patch set 1 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at http://review.typo3.org/38014

Actions
Copy link
 #2

Updated by Jan Helke about 9 years ago

It annoys human users, but prevents bad guys to fire a brute force attack.

I would go for annoyed users :-)

Actions
Copy link
 #3

Updated by Steffen Müller about 9 years ago

  • Status changed from Under Review to Rejected

Needs an API to register security models.

Actions
Copy link

Also available in: Atom PDF