Shahan N.
My feedback
4 results found
-
92 votes
Shahan N. supported this idea ·
-
63 votes
An error occurred while saving the comment -
543 votes
We have serious doubts this function can really increase server security:
1) Plesk has built-in protection against brute-force on login – it will lock the login form. So no one can try multiple attempts
2) Arbitrary login name adds very little guess-complexity to a proper password. If you have concerns for your login brute-forced – add another 5-7 characters into your password and feel safe.As changed login name is still very likely to be some sort of vocabulary word or derived from your other account name – this function would only give a false sense of better security. Your security strength is in complex password, not in a complex login name. If you have one good password, you don’t need to treat login as your “second password” – one good password is enough.
As for concerns that default password requirement is set in “weak”, that fail2ban module is not…
Shahan N. supported this idea ·
-
679 votes
Shahan N. supported this idea ·
The new Filters from Version 9.1 makes Problems on Plesk - please fix that. It's difficult then before.