How to prevent against htpasswd brute force?

Discussion in 'Install/Configuration' started by matty, Nov 4, 2007.

  1. matty

    matty New Member

    Hi, im running a website mainly for my own use, testing etc, however i have some parts protected by htpasswd, ive tried setting maximum requests/second to 5 on the server level, but if i hold down enter on the password prompt it pops up about 20 times per second with no blocking.

    How would i go about protecting my site password protected areas from brute force/ or exploits?

  2. brrr

    brrr Well-Known Member

    Last edited: Nov 4, 2007
  3. anewday

    anewday Moderator

    Use CSF, it has lfd to block it.

Share This Page