on certain networks they have a password lockout method, ie you enter the wrong password 'x' amount of times and your locked out from being able to enter a password for 'x' amount of time.. is this possible on vbulletin? this would drastically cut down on hackerz.
This would be possible but have you thought about the consequences?, whats to stop someone from picking an admin account and deliberately getting it wrong X amount of times and disabling their account, they could then do this with all the admins and all the mods.
There is a hack to log failed logins in my sig, when people try to login and they get it wrong it ads it to the table which you can then view via the admin panel.
Scott is right, but maybe you can limit it to entering the wrong password, from the same IP address, XX times. So even if a hacker enters the wrong password 3 times for example, a person from a different computer can still try to login.
good point, do you think that this is possible? and if it is possible, would it be a free hack or would you charge people. and if you did charge people, could i get it for free since i came up with the idea? atleast ive never seen this idea anywhere else,so i think i came up with it. =]
Ok I think I'm done... you can define the time period (i.e 15 minutes) and how many times the user can try to login before he is blocked. I'll release it tomorrow.
Maybe if I have some time I can write something like "Require unblcok", so you get an e-mail and if you verify it the block is removed.
04-07-2002, 02:26 PM
cookies lockout method
Linear Mode
