|
|
@ -7,7 +7,7 @@ Tracks Authentication Attempts and Prevents Brute-force Attacks |
|
|
|
|
|
|
|
|
This module registers each request done by users trying to authenticate into |
|
|
This module registers each request done by users trying to authenticate into |
|
|
Odoo. If the authentication fails, a counter is increased for the given remote |
|
|
Odoo. If the authentication fails, a counter is increased for the given remote |
|
|
IP. After after a defined number of attempts, Odoo will ban the remote IP and |
|
|
|
|
|
|
|
|
IP. After a defined number of attempts, Odoo will ban the remote IP and |
|
|
ignore new requests. |
|
|
ignore new requests. |
|
|
This module applies security through obscurity |
|
|
This module applies security through obscurity |
|
|
(https://en.wikipedia.org/wiki/Security_through_obscurity), |
|
|
(https://en.wikipedia.org/wiki/Security_through_obscurity), |
|
|
@ -16,7 +16,7 @@ will **not** indicate to the user that his IP is banned and the regular message |
|
|
'Wrong login/password' is displayed. |
|
|
'Wrong login/password' is displayed. |
|
|
|
|
|
|
|
|
This module realizes a call to a web API (http://ip-api.com) to try to have |
|
|
This module realizes a call to a web API (http://ip-api.com) to try to have |
|
|
extra informations about remote IP. |
|
|
|
|
|
|
|
|
extra information about remote IP. |
|
|
|
|
|
|
|
|
Known issue / Roadmap |
|
|
Known issue / Roadmap |
|
|
--------------------- |
|
|
--------------------- |
|
|
|
Rafael Blasco
8 years ago
GitHub