Latest version
Released:
Track Authentication Attempts and Prevent Brute-force Attacks
Project description
Tracks Authentication Attempts and Prevents Brute-force Attacks
This module registers each request done by users trying to authenticate intoOdoo. If the authentication fails, a counter is increased for the given remoteIP. After a defined number of attempts, Odoo will ban the remote IP andignore new requests.This module applies security through obscurity(https://en.wikipedia.org/wiki/Security_through_obscurity),When a user is banned, the request is now considered as an attack. So, the UIwill not indicate to the user that his IP is banned and the regular message‘Wrong login/password’ is displayed.
Download IPTV Brute-Force. Via: www.kitploit.com. IPTV Brute-Force - Search And Brute Force Illegal IPTV Server Reviewed by Zion3R on 14:09 Rating: 5. Tags Hacking X PenTesting X Tools Facebook. Tools Follow @VideosHacking. Hackeando un Banco 3. What is Ministra? Themes; Installation; Flussonic. License Discount; Flussonic Monitor; Xtream UI. Android TV Player for Xtream UI; Android Player for Xtream UI. Download Link: https://www.upload.ee/files/9566806/IPTVBruteforce1.1byAzimut500.exe.html. Download Bruter - Simple tool that can demonstrate the importance of enabling strong passwords for targets with sensitive content by running brute-force attacks.
This module realizes a call to a web API (http://ip-api.com) to try to haveextra information about remote IP.
Configuration
You can use these configuration parameters that control this addon behavior:
- auth_brute_force.whitelist_remotes is a comma-separated list ofwhitelisted IPs. Failures from these remotes are ignored.
- auth_brute_force.max_by_ip defaults to 50, and indicates the maximumsuccessive failures allowed for an IP. After hitting the limit, the IP getsbanned.
- auth_brute_force.max_by_ip_user defaults to 10, and indicates themaximum successive failures allowed for any IP and user combination.After hitting the limit, that user and IP combination is banned.
Usage
Admin user have the possibility to unblock a banned IP.
Logging
This module generates some WARNING logs, in the following cases:
- When the IP limit is reached: Authentication failed from remote ‘x.x.x.x’.The remote has been banned. Login tried: xxxx.
- When the IP+user combination limit is reached:Authentication failed from remote ‘x.x.x.x’.The remote and login combination has been banned. Login tried: xxxx.
Screenshot
List of Attempts
For further information, please visit:
Known issues / Roadmap
- Remove 🐒 patch for https://github.com/odoo/odoo/issues/24183 in v12.
- Depending of server and / or user network configuration, the idenficationof the user can be wrong, and mainly in the following cases:
- If the Odoo server is behind an Apache / NGinx proxy and it is not properlyconfigured, all requests will use the same IP address. Blocking such IPcould render Odoo unusable for all users! Make sure your logs output thecorrect IP for werkzeug traffic before installing this addon.
- The IP metadata retrieval should use a better system. See details here.
Bug Tracker
Bugs are tracked on GitHub Issues. In case of trouble, pleasecheck there if your issue has already been reported. If you spotted it first,help us smash it by providing detailed and welcomed feedback.
Credits
Contributors
- Sylvain LE GAL (https://twitter.com/legalsylvain)
- David Vidal <david.vidal@tecnativa.com>
- Jairo Llopis <jairo.llopis@tecnativa.com>
Maintainer
This module is maintained by the OCA.
OCA, or the Odoo Community Association, is a nonprofit organization whosemission is to support the collaborative development of Odoo features andpromote its widespread use.
To contribute to this module, please visit https://odoo-community.org.
Release historyRelease notifications | RSS feed
9.0.1.1.0.99.dev2 pre-release
9.0.1.1.0.99.dev1 pre-release
9.0.1.1.0
9.0.1.0.0
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
| Filename, size | File type | Python version | Upload date | Hashes |
|---|---|---|---|---|
| Filename, size odoo9_addon_auth_brute_force-9.0.1.1.0-py2-none-any.whl (142.1 kB) | File type Wheel | Python version py2 | Upload date | Hashes |
Hashes for odoo9_addon_auth_brute_force-9.0.1.1.0-py2-none-any.whl
| Algorithm | Hash digest |
|---|---|
| SHA256 | 50fbd8bb3585d8636d3c70198f8c7337b7399d9be86f9962005b331fbc9cb0a3 |
| MD5 | ae6800dff43adc8135993b08a3b346cd |
| BLAKE2-256 | 333fc569f5a3d1289bb77edd3013ca6a03a7060abdb4930ee21769b44fa45028 |
rollsport
Active Member
- Joined
- Oct 29, 2019
- Messages
- 43
- Reaction score
- 126
- Points
- 33
- Location
- nederland
- Added a functionality to fix the number of threads that will checks the channels.
- Added a functionality to scrape additional channel’s tags like (tvg-logo, tvg-name, epg-url … etc from the source file) and include them when saving to file.
- Added “#EXTM3U” first line when saving the list.
- Faster stopping
- Fixed a bug in saving the file after doing an order b y a column.
- fixed a bug in the algorithm of checking channel status, the old version show some channels as online when they are actually offline).
What's new in IPTV Checker 2.06
- Added the ability to move channels up and down, so the user can personalize their list before saving it.
- The user can copy channels only by their URLs and added another option in the right menu to save the selected channels as m3u8 list.
- Fixed a bug on adding channels to existing ones.
- Fixed a bug in channels checking.
- Adding tool-tips to help users to understand the interface.
- Adding Twitter button to follow our account, so users can follow with our development process.
- Added PayPal button for people who want to buy a coffee for us
What's new in IPTV Checker 2.05- Can save Online, Offline, unchecked or All Channels
- No Internal Player, will play on VLC
- Much faster MultiThreading
- Can view Online, Offline, Unchecked Or All Channels
- Can search loaded Channels (real-time search), and choose to check the searched ones
- Have a setting menu, where you can modify userAgent, How many tries to check before considering a channel offline, TimeOut seconds before considering a channel offline, and VLC Location
- New white interface
- And many more