excessive-attempt-lock-thumbnail.png

Excessive Attempt Lock
M2

TOTAL:
$39.00

Compatibility

Magento Platform
Open Source (CE)
2.2, 2.3

Tech Specifications

Current Version:
2.1.0
Type:
Stable Build
Updated:
20 February, 2019
Categories:
Extensions, Content & Customizations, Personalization & Experience Management
Supported Browsers:
Chrome Linux: 42, 43, 44 Mac: 39, 44 Windows: 39, 40, 42, 43, 44 Firefox Linux: 31, 38, 39, 40, 41 Mac: 31, 38, 39, 40, 41 Windows: 31, 38, 39, 40, 41 Safari Linux: 7, 7.1, 8, 9 Mac: 7, 7.1, 8, 9 Windows: 7, 7.1, 8, 9 Edge Windows: 42 IE Windows: 10, 11, 8, 9
License Type:
Policy:

Overview

This module enables an additional security layer to prevent the hackers to abuse your admin and customer logins by attempting many easy-to-guess passwords consecutively.

Other Extensions by WebKul SoftWare Private Limited

Overview

Back to top

Many fraud people try to log in by trying many easy-to-guess passwords consecutively. This method is called "Brute Forcing." This technique is characterized by the attitude, “try and try until you succeed.” It is one of the oldest methods of breaking into something. 

To overcome this problem, you can use Excessive Attempt Lock Module which provides an additional security level for decreasing the fraud by defining the failed login attempts to disable the user and disable time to try again.


Use Case:

Excessive Attempt Lock module enables an additional security layer to prevent the hackers from abusing your admin and customer log in by attempting many easy-to-guess passwords consecutively. 

Like -  You are not allowed to log in for some time if in case you tend to enter wrong patterns or wrong passcodes on your mobile phones. 


Features :

  • Works for both the admin and the customer login
  • The admin can enable or disable the module.
  • The admin can set the disable time in minutes and failed login attempts for the customer.
  • The admin can also set disable times in minutes and failed login attempts for the admin.
  • There is no limit to set the time and attempts.
  • Disable timer displays for both the admin and the customer at the log in page. 


WorkFlow:

After the module installation, the admin can easily configure the module settings for brute force protection. Like -   

Define Failed Login Attempts - The admin can define the number of consecutive failed login attempts that will cause the respective account log in to become disabled temporarily.   

 Disabled/Lockout Time - The admin can even determine the duration(minutes) for how long the account will be disabled after the failed logins.

Note: The admin will define the “failed login attempt” and “disabled/lockout time” configuration for admin and the customer account separately.

At the front-end, if made failed login attempts more than the defined “failed login attempt,” the respective account gets disabled for a set duration. However, after the configured “disabled time,“ the account will be unlocked on their own, and the user needs to enter the correct login credentials to sign in the account successfully.


Benefits:

  • Prevent the fraudulent attacks on the websites by attempting many easy-to-guess passwords continuously.
  • The admin login will be disabled after making the defined number of wrong attempts for a defined time period. 
  • The customer login will be disabled after making the defined number of wrong attempts for a defined time period. 


Demo:

You can check live demo from here.

Release Notes

Back to top

2.1.0:

  • Compatible with Open Source (CE) : 2.3
  • Stability: Stable Build
  • Description:

    ----------------------------- Version 2.1.0 --------------------------------------

    + Compatible with Magento 2.3.x
    - Fixed Bugs
    + Work for both Admin and Customer login.
    + Admin can enable or disable the module.
    + Admin can set Times and Attempts for both Admin and Customer.
    + Unlock timer show for both Admin and Customer at login page.
    + Compatible with Magento 2.3

2.0.0:

  • Compatible with Open Source (CE) : 2.2
  • Stability: Stable Build
  • Description:

    ------------------------------- Version 2.0.0 --------------------------------------
    + Work for both Admin and Customer login.
    + Admin can enable or disable the module.
    + Admin can set Times and Attempts for both Admin and Customer.
    + Unlock timer show for both Admin and Customer at login page.

Support

Back to top
The best place to start if you need help with a specific extension is to contact the developer. All Magento developers have both a contact email and a support email listed.

Q & A

Back to top

Reviews

Back to top