Project

General

Profile

Actions

Bug #4122

closed

webConfiguratorlockout table is missing expiration

Added by Jim Pingle almost 10 years ago. Updated almost 10 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
Rules / NAT
Target version:
Start date:
12/17/2014
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.2
Affected Architecture:
All

Description

The sshlockout_pf process adds IP addresses that fail too many GUI login attempts to the webConfiguratorlockout table, but that table has no expiration process to clean it up.

The sshlockout table has a cron job to expire its entries:

/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout

A similar entry to clean up webConfiguratorlockout should be added to the default config.xml and added by upgrade code.

Actions

Also available in: Atom PDF