Brute Force Block - Documentation (O11)

Stable version 1.0.0 (Compatible with OutSystems 11)

Uploaded

on 02 March 2023

0.0

(0 ratings)

Documentation

1.0.0

Configure Brute Force Block

The protection against brute force attacks is configurable. To change the behavior, proceed as follows:

Field	Description
Invalid Check Window In Minutes	Time frame in minutes in which failed attempts are accounted. Default value is 60 minutes.
First Backoff Delay In Seconds	After hitting the first backoff, it's the time that IP address/ Mobile attempts are blocked. The default value is 300 seconds.
Second Backoff Delay In Seconds	After hitting the second backoff, it's the time that IP Address/ Mobile attempts are blocked. The default value is 3600 seconds.
Max Attempts First Backoff	The number of attempts for an IP address/ Mobile Phone after which the first backoff is triggered. The default value is 20 times.
Max Attempts Second Backoff	The number of attempts for an IP address/ Mobile Phone after which the second backoff is triggered. The default value is 50 times.
Log Days	Number of Days the brute force log should be keep
Block Next Attempts	After Second Backoff, should the next attempts be blocked?
Enable	Enables brute force protection at IP/ Mobile level

This application has two ways of protection against brute force:

Reference BruteForce_API, Service Action CheckBruteForceAttempt_MobilePhone_Service

You can check the Brute Force Requests blocked and unblock them manually. To check the logs, proceed as follows: