XF 1.2 Login Limit Method

[rdn]

Login Limit Method

• CAPTCHA
• Lock out

If a user fails to login 4 or more times in a 15 minute period, this method will be used to prevent brute force attacks.

Can you please explain this further more?
What happens if Lock out is selected?
How many days? or hours will be the user account Locked?

 

[ENF]

If I understood the explanation shown here, Lock Out permanently locks the user account after the login attempt limit has reached. CAPTCHA just allows the user to try again but using the CAPTCHA method to deter bots.

I've not tested the "Lock Out' option yet...

 

[Mike]

They'll just be locked out for that period (the 15 minutes).

 

[ENF]

They'll just be locked out for that period (the 15 minutes).

Thanks for the clarification.
The included wording doesn't clearly state if they fail 4 times in a 15 minute period, that the account would be locked for 15 minutes.