Anzahl Loginversuche (web) limitieren

Domino 9 und frühere Versionen > ND6: Administration & Userprobleme

(1/2) > >>

Raymond:
Hallo zusammen

gibt es im Domino Server eine Möglichkeit, die Anzahl falscher Loginversuche eines Webuser zu limitieren?

Gruss + vielen Dank

Ray

DigitDani:
Hi Ray,

guck:

Problem

Some Web servers (HTTP servers) have the capability to lock out accounts after a certain number of failed login attempts. Some servers implement a lockout period, others lock the login account until an Administrator manually unlocks the account, and others reset the password to something random. Does the Lotus Domino Web server allow you to do account lockouts after a set number of failed login attempts?

Solution

The Domino Web server does not provide this functionality as a product feature. An enhancement request for this new functionality has been submitted to Quality Engineering as SPR# LORN5ZZKPX. Currently, there are no plans to add this feature. Account lockouts can be a possible source of Denial Of Service (DOS) attacks, as anyone with can determine user names on the server could effectively keep those users from logging in by attempting the logins and having the account be automatically locked out.

If you want to provide this functionality for your users, you can use a DSAPI filter. For example, a sample DSAPI filter that can be used by customers to implement this functionality can be found in the Sandbox on the developerWorks Lotus Web site:

Demo-Customized Authentication

As with all Sandbox offerings, this DSAPI filter is not supported by IBM Support. All Sandbox downloads are licensed as-is, unsupported, and non-warranted.

Raymond:
Hi Dani

danke für die prompte Antwort. Die Frage trat im Zusammenhang mit einem Security Review auf. Ich kann mit dem Standard-Domino Verhalten gut leben.

Gruss
Ray

mcilly:
Gabs da nicht auch einmal kommerzielle Lösungen von TimeToAct oder wie die hießen?

/edit: schon gefunden. SecureDomino heißt das Ding. http://www-304.ibm.com/jct09002c/gsdod/solutiondetails.do?solution=1563&expand=true&lc=de

m3:
Domino 8 wird das auch können.
http://www.leyrer.priv.at/martin/2007/01/29#200701_Lotusphere2007_Domino8-Best_of

Navigation

[0] Themen-Index

[#] Nächste Seite

Zur normalen Ansicht wechseln