/dokuwiki-tokenbucketauth

DokuWiki plugin to prevent brute force attacks by delaying them

Primary LanguagePHP

dokuwiki-tokenbucketauth
========================

DokuWiki plugin to prevent brute force attacks by delaying them.

An IP address failing too many times to authenticate will be banned from the login form a configurable amount of time (10 minutes by default).

An email can be sent to a configurable email address when an IP has just been banned.

Current version: 0.5


ChangeLog
=========

0.1 Functionnal plugin (well, it's blocking IP addresses at least)

0.2 Bugfix: @IP@ & @DOKUWIKIURL@ in mails now replaced
    Bugfix: No more email when a banned user is already banned and want to see again the login form
    Bugfix: Now a user is banned for his/her failed attempts, not for his/her viewing the login page

0.3 Plugin renaming

0.4 Bugfix: wrong comparison between times (thanks ayambit)
    Vars renaming according to the plugin name

0.5 Fix compatibility problem with "ondeniedlogin" and "showlogin2" plugins
    Add admin panel to list/remove banned IP addresses


Licence
=======

This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License version 3, 
as published by the Free Software Foundation.

This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
GNU General Public License for more details.

The license for this software can likely be found here: 
http://www.gnu.org/licenses/gpl-3.0.html