Disable Default Admin or Setup 2FA
-
Hello,
Indeed, there must be at least one local admin account, with the purpose of ensuring access is still possible even if the OIDC server becomes unavailable.
If the goal is to secure access, @nebulon 's suggestion (a strong unique password) is the right one.
-
N nebulon marked this topic as a question on
-
N nebulon has marked this topic as solved on
-
Hello,
Indeed, there must be at least one local admin account, with the purpose of ensuring access is still possible even if the OIDC server becomes unavailable.
If the goal is to secure access, @nebulon 's suggestion (a strong unique password) is the right one.
@jypelle is their is autoblock account option exist after certain number of wrong password attempt??
-
No, but there is at least a one-second delay between each attempt.
Let's imagine a bot attempting to log in with a different password every second. In 5 years, it would have time to test 5x365x24x3600 = 1.5x10^8 combinations.
Now, if you choose a password of only 10 characters from [a-zA-Z0-9], that gives 8.4x10^17 combinations.
Before the bot finds your password, you have at least a few million years ahead of you...
-
Lollzz thanks
-
@DualOSWinWiz With release 1.17.0, there is now a 5-second delay between failed login attempts.
-
@jypelle I am planning for Sovereign / Business license due to AES Secret encryption for credentials before purchasing can i apply that on a cloudron application instance?
-
AES secret encryption requires two things that aren't possible on a Cloudron instance: direct access to the configuration file to set up the encryption key, and the ability to stop and restart the instance during the encryption process. For this reason, you'll need a manual installation to use this feature.
Let me know if you have any questions about the setup!
-
Please check my DM
-
AES secret encryption requires two things that aren't possible on a Cloudron instance: direct access to the configuration file to set up the encryption key, and the ability to stop and restart the instance during the encryption process. For this reason, you'll need a manual installation to use this feature.
Let me know if you have any questions about the setup!
Hello! It looks like you're interested in this conversation, but you don't have an account yet.
Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.
With your input, this post could be even better 💗
Register Login