arcus.webapi icon indicating copy to clipboard operation
arcus.webapi copied to clipboard

Published 20 hours ago verified publisher icon arcus-azure

Provide 'too many failed authentication attempts' security alert

Open stijnmoreels opened this issue 3 years ago • 3 comments

Is your feature request related to a problem? Please describe. We already write a security event upon successful van failed authentication, but we do nothing we possible malicious activity that could be detected with too many failed authentication attempts.

Describe the solution you'd like We should consider adding a configurable threshold that will track a security alert when too many failed authentications are being monitored.

Describe alternatives you've considered This could also reflect in the HTTP response, but maybe in a later phase.

stijnmoreels avatar Sep 29 '21 09:09 stijnmoreels

Would it be possible to disable this as well ?

fgheysels avatar Sep 29 '21 12:09 fgheysels

Would it be possible to disable this as well ?

Yes, of course, will like the general security events probably an opt-in feature.

stijnmoreels avatar Sep 29 '21 13:09 stijnmoreels

Prioritizing .NET 8 support, moving to v2.1.

stijnmoreels avatar Dec 15 '23 05:12 stijnmoreels