I've been playing with the LOGIN process and I'm unable to find a way to restrict login attempts. In fact I can't find a way to even see or catch when an attempt is made to login with an invalid user or password.
This is a major security issue and I'm sure since I am new that I'm missing something.
Can someone point me in the correct direction, please.
Security? Correct way to LOG or RESTRICT login attempts
-
- Posts: 7525
- Joined: Sun Apr 24, 2005 12:36 am
- Contact:
This level of security is currently not supported in Aware IM. Multiple login attempts, smart card logins, biometrics etc are not there yet.
If this is a major issue for you we can provide a module that will allow you to intercept login attempts and prevent multipe logins in whatever way you see fit (you will need to write code for this in Java or JSP).
If this is a major issue for you we can provide a module that will allow you to intercept login attempts and prevent multipe logins in whatever way you see fit (you will need to write code for this in Java or JSP).
Aware IM Support Team
I have no problem with paying you to write a module. Could you send me a private message or a private email on who and how to get this done.
I believe a simple fix in the current code would be to fire the LoginNotification routine on invaild login attempts and we could write our own logic on what we want or don't want to allow?
I believe a simple fix in the current code would be to fire the LoginNotification routine on invaild login attempts and we could write our own logic on what we want or don't want to allow?
-
- Posts: 7525
- Joined: Sun Apr 24, 2005 12:36 am
- Contact:
-
- Posts: 7525
- Joined: Sun Apr 24, 2005 12:36 am
- Contact: