Brute Force Protection

Enhance includes built-in brute force protection to safeguard against automated attacks such as brute force and DDoS attacks. This protection is enabled by default and does not require the installation of tools like fail2ban. It offers configurable rate limiting and manual permanent allow/block lists for both email addresses and IP addresses.

Configure Brute Force Protection:

To configure brute force protection settings:

  1. Open Settings in the left sidebar.
  2. Select Platform.
  3. Navigate to Brute force protection.

Available Configuration Options:

  • Email Rate Limiting: Controls the number of failed login attempts allowed within a 1-minute interval before an email address is rate-limited.

    • Default: 10 attempts.

  • Email Manual Permanent Blocking: Allows you to add specific email addresses to an allowed or blocked list.

  • IP Address Rate Limiting: Controls the number of failed login attempts allowed within a 1-minute interval before an IP address is rate-limited.

    • Default: 8 attempts.

  • IP Address Permanent Blocking: Allows you to add specific IP addresses to an allowed or blocked list.

You can adjust these settings based on your security preferences to prevent brute force attacks effectively.

Was this answer helpful? 0 Users Found This Useful (0 Votes)

Most Popular Articles

Platform Domains

Platform Domains Platform domains are used by your customers to access various services like the...