Add simple admin brute-force protection #7

New issue

Open

opened 2026-06-02 01:56:32 +02:00 by ak · 0 comments

ak commented 2026-06-02 01:56:32 +02:00

Owner

Copy link

Add a small KISS-style brute-force protection layer for the login/admin area.

Preferred behaviour:

• rate-limit by IPv4 /24
• rate-limit by IPv6 /64
• do not depend on username
• use Django cache backend
• support Valkey/Redis if configured

This is not a security boundary, only a practical reduction of noisy automated login attempts.

Add a small KISS-style brute-force protection layer for the login/admin area. Preferred behaviour: * rate-limit by IPv4 /24 * rate-limit by IPv6 /64 * do not depend on username * use Django cache backend * support Valkey/Redis if configured This is not a security boundary, only a practical reduction of noisy automated login attempts.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

devel

7938960624

No results found.

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

viafier/viafier4#7

No description provided.