Changes between Initial Version and Version 1 of Ticket #24465, comment 3


Ignore:
Timestamp:
03/10/2015 08:11:54 AM (4 years ago)
Author:
Mark Litwintschik
Comment:

Legend:

Unmodified
Added
Removed
Modified
  • Ticket #24465, comment 3

    initial v1  
    11My concern is that this gives a chance to run a dictionary attack against the login. If fail2ban is monitoring nginx's logs or django's logs directly the response for a failed login and a correct one look the same.
     2
     3Thanks for the heads up on django.contrib.auth.signals.user_login_failed, I'll take a look at it.
Back to Top