Ticket #1437230 (closed Feature Requests: duplicate)

Opened 3 years ago

Last modified 9 months ago

Secure Login

Reported by: nobody Owned by: nobody
Priority: 5 Milestone: 0.1.1
Component: Core functionality Version: None
Severity: normal Keywords:
Cc:

Description (last modified by thomasb) (diff)

Add Captcha after X failed attempts to prevent brute force.

Change History

Changed 3 years ago by p0l0

Logged In: YES 
user_id=1423687

You can force Secure Login using .htaccess (Replace /webmail
with the relative path for roundcube Ex:
http://domain.com/webmail/)


<IfModule mod_rewrite.c>
  <IfModule mod_ssl.c>
                <Location /webmail>
                        RewriteEngine on
                        RewriteCond %{HTTPS} !^on$ [NC]
                        RewriteRule .
https://%{HTTP_HOST}%{REQUEST_URI}       [L]
                </Location>
        </IfModule>
</IfModule>

Changed 2 years ago by thomasb

  • owner changed from roundcube to nobody
  • severity changed from critical to normal
  • status changed from assigned to new
  • description modified (diff)
  • milestone deleted

Changed 9 months ago by seansan

  • milestone set to later

Changed 9 months ago by seansan

  • status changed from new to closed
  • resolution changed from None to duplicate
  • milestone changed from later to 0.1.1

See also #1484827

Note: See TracTickets for help on using tickets.