[RADIATOR] Automatic block wrong password

Heikki Vatiainen hvn at open.com.au
Wed Dec 21 15:24:39 CST 2011


On 12/20/2011 04:46 AM, sergio wrote:

> I need to put an automatic block of User for users who type the wrong password five times.
> 
> Would let something like locked for 30 minutes or until someone manually unlock.

Radiator does not have this kind of module, so you would need to
implement the required behaviour.

For me this sounds like a SQL database would be needed for storing
records of bad password tries and information about if and when the
account is locked.

An alternative might be e.g. LDAP server that locks the account after 5
incorrect logins. The LDAP server would then implement 30 minute or
infinite locking. In other words, if your authentication backend
supports this, you would not need to do it with Radiator.

Heikki

-- 
Heikki Vatiainen <hvn at open.com.au>

Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
NetWare etc.


More information about the radiator mailing list