Adding google recaptcha to plesk login area, or any captcha validation
Adding google recaptcha to plesk login area, or any captcha validation
Azmi Daşman
shared this idea
We are not sure why solving a captcha can be a better solution than the existing solution of a Fail2Ban jail monitoring login attempts. After all, with a captcha, users are forced to fulfill an extra step, do extra input and clicks just to login. It would make the login process more difficult for them and slow the process down while at the same time it does not provide any extra security. Moreover, many captcha solutions have violated EU GDPR. Also, with a captcha, this will not prevent bots from hammering the server with requests, hence causing unnecessary cpu load.
Instead, Plesk has a very secure and effective solution to block bots from testing passwords: Please use the existing "plesk-panel" Fail2Ban jail (Tools & Settings > IP Address Banning).
-- PD
-
Hopti Kopti commented
I have blocked/banned 2500 claudflare IP addresses by fail2ban, because of brute force login attack. Now my server is not working properly because of banned cloudflare IPs (Attackers are using cloudflare!!!) Captcha has to be integrated as soon as possible. I really wonder if you read the comments of rejected ideas but I need it urgently. Cloudflare is not a safe place anymoru. Hackers/Attackers use it as a comuflage.
-
vimobe
commented
No update. i think its a feature that can be turned on and off its something that easy to implement by PLESK team.
-
Fabiano Rodrigues commented
Please add hcaptcha in the login panel for more security.
-
Daniel Wimpel
commented
I've seen a bunch of suggestions for this exact feature. The existing option is garbage as it doesn't even support additional admin accounts.
-
Chris Danks commented
its now 2021 and this still isn't integrated :(
this could help stop bots attacking plesk login page -
Fabio Perri
commented
+1 for me !
Please add Google ReCaptcha V2 and V3 to Plesk login area.
Thanks in advance for the support.