SFTP Gateway Support

3.0

Brute Force Protection

TLDR - Quick Summary

What: Built-in protection against brute force login attacks

Web Admin: 10 failed attempts from same IP = 1 hour lockout

SFTP System: 10 failed attempts within 5 minutes = 5 hour IP ban

Note: Lockouts are IP-based regardless of username used

Wed Admin UI Brute Force Protection

If a user attempts to login with invalid credentials from the same ip address after 10 failed attempts, they will be locked for an hour.

The front end will give you the time that you have left, so if you try to login after you have been locked out, you will see this message:

Web Admin

It also should not matter if you are using a bad username or password, all that matters is that you are trying from the same ip address.

SFTP System Brute Force Protection

The SFTP system will ban an IP address for 5 hours if it has made more than 10 failed authentication attempts within 5 minutes of each other.

PreviousNext