开发者_JAVA技巧
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 5 years ago.
Improve this questionDoes anyone know of a Django App which can be used to extend django auth and lock accounts if a brute force password guessing attack is mounted?
Ie, an account lockout mechanism that restricts the number of login attempts.
http://pypi.python.org/pypi/django-axes/ is what you are looking for.
I created django-failedloginblocker for this purpose, and used django-brutebuster and, to a lesser extent, django-axes as inspiration.
This one is still maintained (2018): https://github.com/kencochrane/django-defender
You can also try http://pypi.python.org/pypi/django-lockout/0.1.0
精彩评论