Skip to content

Commit

Permalink
👌 IMPROVE: rephrase recommendation about bruteforce protection
Browse files Browse the repository at this point in the history
Signed-off-by: Jonas Sulzer <[email protected]>
  • Loading branch information
violoncelloCH committed Mar 29, 2024
1 parent f30f950 commit 285a810
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion README.md
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,7 @@ If something does not work, check the log file at `nextcloud/data/nextcloud.log`
**⚠⚠ Warning:** If you are using more than one backend or especially one backend more often than once, make sure that you still have resp. get unique `uid`s in the database. ⚠⚠

**⚠⚠ Warning:** If you are using tools like fail2ban (https://www.fail2ban.org) to protect your authentication source (e.g. IMAP server), be sure to disable it for the host that runs `user_external`. Otherwise a single user failing to login too many times can practically DoS your whole Nextcloud installation because `fail2ban` will then block the Nextcloud IP address. ⚠⚠
Instead, install appropriate protection apps within Nextcloud that bans repeated failed login attempts.
Instead, make sure the bruteforce protection app for Nextcloud is installed and configured correctly.

FTP
---
Expand Down

0 comments on commit 285a810

Please sign in to comment.