Increase the logging to subsonic.log so It includes users logged in and failed tries with ip.
As techsc writes in this post: http://forum.subsonic.org/forum/viewtopic.php?t=2944
Security Policies should be implemented.
Rename admin and limit failed logins
Moderator: moderators
3 posts
• Page 1 of 1
Rename admin and limit failed logins
by serond » Thu Apr 01, 2010 10:07 am
- serond
- Posts: 11
- Joined: Tue Mar 30, 2010 7:32 pm
by pufnstuf » Sat Apr 03, 2010 12:52 am
yes please can we limit the number of times someone can fail logging in. I don't want people/bots to just hammer away at the login page until the manage to hit on the correct password.
Thanks for considering this!
Thanks for considering this!
- pufnstuf
- Posts: 7
- Joined: Fri Mar 26, 2010 7:01 am
by serond » Thu Apr 22, 2010 3:28 pm
Is there any plans of upgrading the security of subsoic?
http://en.wikipedia.org/wiki/Spring_Security
At present state it don't seem to log anything.
http://en.wikipedia.org/wiki/Spring_Security
At present state it don't seem to log anything.
- serond
- Posts: 11
- Joined: Tue Mar 30, 2010 7:32 pm
3 posts
• Page 1 of 1
Who is online
Users browsing this forum: Bing [Bot] and 2 guests