powered by Jive Software

Login security


I’d like to activate login security as seen on http://community.igniterealtime.org/admin/settings-loginsecurity.jsp in a few days.

I’d like to set “Number of failed attempts” to 1 as one does usually know the password and “Forced delay in seconds” to 10 which is usually fine as entering the username and password usually takes some seconds (unless one uses a bot to test user+pass combinations).

Unless I hear no Veto I expect that this is fine for everyone.


1 Like

Done, while I wonder whether this does really help.

Deleting the cookie before every login attempt should allow one to bypass the 10s delay - unless it matches the user name.