Re: locking user out after 3 incorrect attempts to log in

[G]

One option would be to lock the account at the database level. You mark the account as locked, and the date/time when the account was locked. The next time someone tries to login at that account, you can check the elapsed time between Now() and the lockTime, against a third value from the database (lockDuration or something like that).

This would allow the account to effectively unlock itself after a given period of time.

Brian
  ----- Original Message -----
  From: Casey C Cook
  To: CF-Talk
  Sent: Tuesday, June 15, 2004 11:48 AM
  Subject: Re: locking user out after 3 incorrect attempts to log in

  As log as it just kicks the user off the login screen I wouldnt mind. What
  I really dislike is 3 failed attempts and you have to call a helpdesk or
  send e-mail or whatever to have your account "reactivated" such that you
  can try to login again.

  Casey Cook

---

[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]

---