By miles28 on

Hi.

I would like to know if there is any way to block a user that tries to login consecutivly a certain number of times with a wrong password.

Thanks in advance.

Categories: Drupal 5.x

Comments

pbarnett’s picture

pbarnett commented

Hi!

Go to Administer > User management > Users; you will see a list of users.

Select the user, pick 'block selected users' from the update options, and hit the Update button.

User blocked.

Pete.

miles28’s picture

miles28 commented

Oh, sorry, I know how to do it by the User managment section. I forgot to say if there is a way to get the system blocks the user automatically.

Thanks in advance.

mdlueck’s picture

mdlueck commented

Did you mean like "three tries and you are locked out?" and the account becomes disabled either for n minutes or until an admin unlocks the account?

miles28’s picture

miles28 commented

Yes, that's right!

mdlueck’s picture

mdlueck commented

Are you thinking it really is the correct person entering their password incorrectly, or might it be someone else that happens to know a valid user ID on your site?

If it is the real person, might suggest Firefox to them, which has a good password manager.

I suspect, annoying as it may be, you are best to put up with the trash in the logs.

WebKing’s picture

WebKing commented

Yep, you are absolutely right.

Just given this firefox password manager tutorial in another thread, I found it useful. Remembering passwords made so much easy. And the important thing is, it's secured. No more headache!

With Regards,
Sam

miles28’s picture

miles28 commented

Is there any posibility of making a user that tries several times to log in with a wrong password to be locked out?" and the account becomes disabled either for n minutes or until an admin unlocks the account?

Thanks in advance.

ilo’s picture

ilo commented

http://drupal.org/project/login_security

Check if it fits your requirements.