HomeWildfire Games
Diffusion 0 A.D. Public Repository rP24794

Limit possibility of brute force attacks when guessing password
rP24794
Actions

Description

Limit possibility of brute force attacks when guessing password

As suggested by elexis, rP24728 should get some protection against brute force attacks on password.

This is supposed to prevent attackers from getting connection data by guessing the password.

Each failed attempt increases the counter.
XmppClient on the server side checks for the users with certain number of failed attempts, determined in CNetServer, and refuses to check the password, answering with banned message.
So they cant guess again in given match. Effect of this block will dissapear after new match is created.

Differential revision: D3467
Comments by: wraitii, Stan
Tested by: Stan, Freagarach
Ref: #5913

Details

Committed
SilierJan 26 2021, 9:20 PM
Differential Revision
D3467: Limit possibility of brute force attacks when guessing password
Parents
rP24793: Hotkey editor fix: don't modify hotkeys in place.
Branches
Unknown
Tags
Unknown
Build Status
Buildable 15433
Build 33744: Trigger Windows Autobuild
Build 33743: Post-Commit BuildJenkins
Build 33742: Post-Commit Build (macOS)Jenkins

Changes (5)

PathSize
ps/
trunk/
binaries/
data/
mods/
public/
gui/
gamesetup_mp/
source/
lobby/
network/
scripting/

rP24794

View Options

ps/trunk/binaries/data/mods/public/gui/gamesetup_mp/gamesetup_mp.js

Loading...
View Options

ps/trunk/source/lobby/XmppClient.cpp

Loading...
View Options

ps/trunk/source/network/NetServer.cpp

Loading...
View Options

ps/trunk/source/network/NetServer.h

Loading...
View Options

ps/trunk/source/network/scripting/JSInterface_Network.cpp

Loading...
Wildfire Games ยท Phabricator