HTTP Status 401 after login failed

david.wan · Post by **david.wan** » Sun Dec 29, 2013 7:40 pm

1. Brekeke Product Name and Version: Version 3.2.5.0 Standard

2. Java version: apache-tomcat-6.0.35

3. OS type and the version: RHEL 5.5

4. UA (phone), gateway or other hardware/software involved:

5. Your problem:

When a user keep trying to login to the brekeke sip server web page with a wrong password, the page will return "HTTP Status 401" after 7 to 8 times failed. Then that user's IP address seems to be blocked forever until tomcat is restarted. Can this blocking be disabled? Thank you.

hope · Post by **hope** » Sun Dec 29, 2013 9:11 pm

try to create a file "config.properties" under webapps\sip\WEB-INF\work\sv\
put the following parameter to change failed login count number
com.brekeke.web.util.AccessBlock.COUNT_FAIL=7

default is 7 times

restart server machine

david.wan · Post by **david.wan** » Mon Jan 06, 2014 11:42 am

hope wrote:try to create a file "config.properties" under webapps\sip\WEB-INF\work\sv\
put the following parameter to change failed login count number
com.brekeke.web.util.AccessBlock.COUNT_FAIL=7

default is 7 times

restart server machine

Yes. It's work. Thank you very much.

david.wan · Post by **david.wan** » Mon Jan 20, 2014 12:02 am

Hi hope,

May I know whether we can adjust the blocking period rather than change the trial times? For example, block the IP for 10mins after default 7 times login failed

hope · Post by **hope** » Mon Jan 20, 2014 10:41 am

com.brekeke.web.util.AccessBlock.TIME_RECOVER

set ms for recover time.