Hi Chris, Maurice
Thanks for the replies.
Was hoping someone would have already done something as I am under a pretty
tight deadline.
Dont think the denyhosts route will be a goer as hosts.deny will only be
writeable as root and dont want to have to run tomcat as root, change
permissions, or st
Simon, Chris
If you write your own mechanism, you might want to take a look
at the configuration script for "DenyHosts", which is a highly
configurable tool for port blocking (via mods to /etc/hosts.deny)
of sshd upon too-many failed attempts in a given time interval.
This is similar to what you
Simon,
> Has anyone done anything with tomcat authorisation to configure in a
> maximum number of retries before an address/account is blocked.
I'm pretty sure that Tomcat's authentication system does not support
this feature. You could probably write your own authenticator to track
that kind of
Hi List
Has anyone done anything with tomcat authorisation to configure in a maximum
number of retries before an address/account is blocked.
I have setup a secure site and want to only give the user a maximum number
of 3 tries at logging in before denying them the login ability for a
specified p
