Hi Hugo,
how can i limit the number of login attempts with basic authentication?
I want to lock the IP after a number of failed attempts.
P.S.
The code example in the last question of FAQ has an error.
There is a typo. Should be TimeForRequest not WaitForRequest.
Wrong code
Binding {
...
MaxRequstSize = 128
MaxKeepAlive = 50
WaitForRequest = 3, 20
}
ConnectionsPerIP = 10
ReconnectDelay = 5
BanOnMaxPerIP = 15
BanOnFlooding = 10/1:15
Right code
Binding {
...
MaxRequstSize = 128
MaxKeepAlive = 50
TimeForRequest = 3, 20
}
ConnectionsPerIP = 10
ReconnectDelay = 5
BanOnMaxPerIP = 15
BanOnFlooding = 10/1:15
I think that also the httpd.conf example file coming with hiawatha has the same typo.