All of lore.kernel.org
 help / color / mirror / Atom feed
From: Neil Bradley <Neil_Bradley@phoenix.com>
To: OpenBMC Maillist <openbmc@lists.ozlabs.org>
Subject: bmcweb 30 second lockout
Date: Wed, 9 Sep 2020 22:13:21 +0000	[thread overview]
Message-ID: <1f5b34f7029a48f39a5dfdbf9aad9e93@SCL-EXCHMB-13.phoenix.com> (raw)

[-- Attachment #1: Type: text/plain, Size: 535 bytes --]

I had recently read somewhere on the OpenBMC mailing list (forgive me, as I can't find it anywhere now) recently indicating that there'd be a 30 second lockout for a given user if there were 3 consecutive failed login attempts. My question is firstly, is this the case, and secondly, is it tied to the user globally regardless of connection or is it per user and connection? The reason I ask is that the former would still allow for a denial of service attack and want to make sure that's not actually the case.

Thanks!

-->Neil

[-- Attachment #2: Type: text/html, Size: 2386 bytes --]

             reply	other threads:[~2020-09-09 22:13 UTC|newest]

Thread overview: 9+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2020-09-09 22:13 Neil Bradley [this message]
2020-09-09 23:20 ` bmcweb 30 second lockout Joseph Reynolds
2020-09-09 23:26   ` Neil Bradley
2020-09-11 21:10     ` Joseph Reynolds
2020-09-11 21:42       ` Neil Bradley
2020-09-14 14:31         ` Joseph Reynolds
2020-09-14 14:55         ` Ed Tanous
2020-09-15 16:14           ` Joseph Reynolds
2020-09-15 16:20             ` Ed Tanous

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1f5b34f7029a48f39a5dfdbf9aad9e93@SCL-EXCHMB-13.phoenix.com \
    --to=neil_bradley@phoenix.com \
    --cc=openbmc@lists.ozlabs.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.