#424 Login rate limits?

[M B]

When configured to use LDAP as login mechanism, does MRBS prevent brute-force attempts to guess LDAP passwords?

If so, how do I configure that?

If not, what is the recommended setup to prevent that (fail2ban?)

Thanks!

[Campbell Morrison]

No, it doesn't. But wouldn't that be the responsibility of the LDAP server?

[Anonymous]

hye! may I know if it is possible for me to let user make a booking without logging in? Means users are not required to have an account for booking