|
|
| Author |
Message |
EOD
Junior WebHelper
Joined: 21 Aug 2006
Posts: 1
|
 Posted:
Mon Aug 21, 2006 3:09 am (18 years, 4 months ago) |
  |
ok .htaccess and .htpasswd are working great. the problem is...anyone can get 3 guesses at the password. where in linux can i change that to only allow one attempt. or is there a line that can be added to the .htaccess file? i havent found any information on this anywhere. any and all help is greatly appreciated. thank you |
|
|
    |
|
adam
Forum Moderator & Developer
Joined: 26 Jul 2002
Posts: 704
Location: UK
|
| Posted:
Mon Aug 21, 2006 8:38 am (18 years, 4 months ago) |
|
I believe this is something that is controlled at the browser's side, not at the server. Your best option would to be to find some kind of addon/script that can analyse the server logs and specifically block anyone who makes too many attempts. Something similar to BFD might work, though you'd probably need root access for it. |
________________________________
It's turtles all the way down... |
|
 |
|
Daniel
Team Member
Joined: 06 Jan 2002
Posts: 2564
|
| Posted:
Mon Aug 21, 2006 8:40 am (18 years, 4 months ago) |
|
Actually the number of guesses is unlimited. Once the three password prompts have appeared, you can refresh the page and try again. If you want more advanced password protection (which locks the user out after a certain number of failed attempts), you could look at a PHP authentification script (you will probably find one which suits your needs at http://www.hotscripts.com/PHP/Scripts_and_Programs/User_Authentication/index.html). |
________________________________
 |
|
|
|
|
|
|
You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot edit your posts in this forum.
You cannot delete your posts in this forum.
You cannot vote in polls in this forum.
|
Page generation time: 0.119998 seconds :: 18 queries executed :: All Times are GMT
Powered by phpBB 2.0
© 2001, 2002 phpBB Group :: Based on an FI Theme
| |
