khanh.pndc/nextcloud-docs
1
0
Fork 0
mirror of https://github.com/nextcloud/documentation.git synced 2026-01-02 17:59:36 +07:00
Code Issues Packages Projects Releases Wiki Activity

Bruteforce docs

Browse Source 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
This commit is contained in:
Roeland Jago Douma
2019-10-08 10:04:59 +02:00
parent 2375475d6d
commit 40293e3f2f
3 changed files with 42 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

39
admin_manual/configuration_server/bruteforce_configuration.rst Normal file
View File

@@ -0,0 +1,39 @@
======================
Brute force protection
======================
Nextcloud has built-in protection against brute force attempts. This protects
your system from attackers trying for example a lot of different passwords.
Brute force protection is enabled by default on Nextcloud.
How it works
------------
The brute force protection is easiest to see in action at the login page.
If you try to log in the first time with an invalid username and/or password you
will not notice anything. But if you do this a few times you start to notice
that the verification of the login is taking longer each time. This is the
brute force protection kicking in.
The maximum delay is 25 seconds.
After a successfull login the attempts will be cleared. And once a user is
properly authenticated they will not longer be hit by the delay.
Troubleshooting
---------------
On most setups Nextcloud will work out of the box without any issues. If you
run into a situation where login is often very slow for all users the first
step is to inspect the `bruteforce_attempts` table. There you can see
which IP addresses are actually throttled.
If you are behind a reverse proxy or load balancer it is important you make sure it is
setup properly. Especially the **trusted_proxies** and **forwarded_for_headers**
`config.php` variables need to be set correctly. Otherwise it can happen
that Nextcloud actually starts throttling all traffic coming from the reverse
proxy or load balancer. For more information see serverconf_reverseproxy_.

1
admin_manual/configuration_server/index.rst
View File

@@ -17,6 +17,7 @@ Nextcloud configuration
logging_configuration
antivirus_configuration
reverse_proxy_configuration
bruteforce_configuration
automatic_configuration
theming
oauth2

2
admin_manual/configuration_server/reverse_proxy_configuration.rst
View File

@@ -1,3 +1,5 @@
.. _serverconf_reverseproxy:
=============
Reverse proxy
=============