How to block brute force in multiple user environments with one ip

Quality of service module for Apache httpd

Brought to you by: pbuchbinder

How to block brute force in multiple user environments with one ip

Forum: Open Discussion

Creator: coolgood

Created: 2018-10-12

Updated: 2018-10-15

coolgood - 2018-10-12

I saw the Brute Force example in the document and set it as it is.
Can you give me an example of how to use _Decrement in a multi-user environment on one IP?

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Pascal Buchbinder - 2018-10-15

Hi
The sample use cases are mainly intended to give you an idea for what you can use the module and how to use its directives. These are not ready-to-use configurations which you can apply 1:1 to your server.

To limit the number of failed login attempts, you first have to know how a failed login attempt looks like. Which request/response attributes you have to check (URI, method, status code, headers, ... or even content in the repose body). The presence of these attributes shall increment the defined QS_ClientEventLimitCount counter.

The same applies to successful logins: If you know the attributes, you can use them to decrement the counter.

Best regards,
Pascal

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Log in to post a comment.