#50647 Account Lock/Password Syntax checking for Root DN
Opened 6 months ago by mreynolds. Modified 6 months ago

Issue Description

Right now, as it has always been, there is nothing stopping someone from doing a brute force attack on the Root DN's password. While is hardcoded for the Root DN password changes to bypass password policy, we should add something, even if it's a basic policy, to prevent these attacks.

Maybe extend the Root DN Access Control plugin and add a new postop bind plugin function.


Metadata Update from @mreynolds:
- Custom field origin adjusted to None
- Custom field reviewstatus adjusted to None
- Issue set to the milestone: 1.4 backlog

6 months ago

Just a simple idea to reduce capability of brute force attack is to create a delay of few seconds, upon DM bind failure.

Metadata Update from @tbordaz:
- Issue set to the milestone: None (was: 1.4 backlog)

6 months ago

Metadata Update from @mreynolds:
- Issue set to the milestone: 1.4 backlog

6 months ago

Login to comment on this ticket.

Metadata