Christensen, Courtney wrote:
Hi List,
I've searched Google, mediawiki.org, the mailing list archives, and looked through the listed extensions, but I have been unable to find anything about keeping mediawiki accounts from being brute-forced. I'm specifically looking for something that locks an account down after a specified number of login attempts or which adds time between login requests when the password is given incorrectly. Do measures like this exist? Did I just use the wrong search terms?
Thanks! Courtney Christensen
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org http://lists.wikimedia.org/mailman/listinfo/wikitech-l
ConfirmEdit has a feature where user logins are CAPTCHA-ed if a login attempt fails. This only applies if you have caching enabled though.
MinuteElectron.