From ada82f07b6f634d8cbef4aced5e9d1bb88015a15 Mon Sep 17 00:00:00 2001 From: Joshua Ramon Enslin Date: Mon, 7 Dec 2020 15:31:36 +0100 Subject: [PATCH] Reduce multipliers in brute force protection --- MD_STD_SEC.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/MD_STD_SEC.php b/MD_STD_SEC.php index 1ad51c9..3c2c916 100644 --- a/MD_STD_SEC.php +++ b/MD_STD_SEC.php @@ -46,8 +46,8 @@ final class MD_STD_SEC { const BRUTE_FORCE_DELAY_DEFAULT = 2000; // 2000 microseconds = 2 milliseconds const BRUTE_FORCE_DELAY_MULTIPLIER_COMMON = 1.08; - const BRUTE_FORCE_DELAY_MULTIPLIER_PER_USER = 3; - const BRUTE_FORCE_DELAY_MULTIPLIER_PER_IP = 8; + const BRUTE_FORCE_DELAY_MULTIPLIER_PER_USER = 1.8; + const BRUTE_FORCE_DELAY_MULTIPLIER_PER_IP = 4; /** * Prevent brute force attacks by delaying the login .