Track invalid passwords for further attack analysis
ilo - September 21, 2009 - 08:17
| Project: | Login Security |
| Version: | 6.x-1.x-dev |
| Component: | Code |
| Category: | feature request |
| Priority: | normal |
| Assigned: | Unassigned |
| Status: | postponed (maintainer needs more info) |
Jump to:
Description
Even If I'm not sure about this, EugenMayer has issued that it would be of help tracking also the invalid submitted password. This could easily be done in current tracking table with a field addition.
A more accurate description on what should be done is required, just keeping the passwords for nothing makes no sense, although they can be viewed using a regular database query.
#1