Closed Bug 1722612 Opened 4 months ago Closed 3 months ago

Add support for sending IP addresses of authentication failures and abusive behavior to the iprepd API for rate limiting

Categories

(bugzilla.mozilla.org :: General, enhancement)

enhancement

Tracking

()

RESOLVED FIXED

People

(Reporter: dkl, Assigned: dkl)

Details

Using a client secret, we will send authentication failures to the iprepd API endpoint from BMO. iprepd can then be setup to rate limit these failures for us without doing so in BMO. This can help with brute force attacks against BMO accounts and possibly other cases.

Summary: Add support for sending auth failures based on IP address to the iprepd API for rate limiting → Add support for sending IP addresses of authentication failures and abusive behavior to the iprepd API for rate limiting
  • needs config options for endpoint url and client secret.
  • Categories: user/pass, api-key, token, cookie, 2fa

Merged with master. Will need to get with iprepd folks to set up the new policies.

Status: ASSIGNED → RESOLVED
Closed: 3 months ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.