Enhanced Account Blocking with User-Specific Timer
Yoann Traut (RCDevs)
We're pleased to introduce a new feature in OpenOTP Server's Account Blocking section!
To strengthen defenses against brute force attacks, a user-specific blocking timer is now available. This feature allows you to set blocking timers per user, group, or policy, providing more granular control over account protection.
Key Highlights of the New Blocking Timer:
- Per-User, Group, or Policy Configuration: Customize the blocking timer based on individual users, specific groups, or policies, offering flexibility in security settings.
- Incremental Blocking by Source IP: The timer now blocks incrementally based on the offending IP address, making it an effective alternative to the previous fixed-duration block applied to a user account.
- Enhanced Security vs. 'Max Failed Login Tries': By targeting specific IPs that trigger multiple failed login attempts, this approach generally provides a more robust defense than the 'Max Failed Login Tries' setting.
This update ensures that accounts remain more secure while reducing the risk of blocking legitimate users. As always, we recommend exploring these new settings to find the optimal configuration for your environment.
https://docs.rcdevs.com/openotp/
This feature will be available starting with OpenOTP version 2.2.21, which will soon be available on RCDevs repositories.
Thank you for your continued trust in OpenOTP Server!