Incorrect login attempt limit in ojs-3.1.1-4

Dear OJS Team,

I have an issue related to login attempts. Is there anyway, I can prevent incorrect login attempts 3 times only after that user can not access the site for several minutes?

Please help.

Thanks with Regards
Avinash Shukla

Please help me out,

There is no limit on number of incorrect password retries while trying to login. This may lead to Brute force attack.

Thanks with Regards
Avinash Shukla

Hi @Avinash_Shukla,

It is not possible to do this through site configuration. You may be able to do it by adding code to the lib/pkp/classes/security/Validation.inc.php file.

Best,
Amanda Stevens
Public Knowledge Project Team