FeministWiki:LDAP Schema: Difference between revisions
    Line 140: Line 140:
      pwdLockoutDuration: 3600
      pwdLockoutDuration: 3600
      pwdMaxFailure: 10
      pwdMaxFailure: 10
    pwdFailureCountInterval: 3600
      EOF
      EOF
       
       
    Line 150: Line 151:
      EOF
      EOF


    With these settings, five consecutive authentication failures with a username will lock the account for an hour.
    With these settings, ten consecutive authentication failures with a username will lock the account for an hour.  Login failures are also cleared after an hour.  This means it's possible to try ten passwords per hour during a brute-force attack, which won't get the attacker very far.


    === Time of last login ===
    === Time of last login ===
    Retrieved from "https://feministwiki.org/wiki/FeministWiki:LDAP_Schema"