* * roundcube-defense is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * roundcube-defense is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with roundcube-defense. If not, see . */ /* Whitelist and blacklist (processed in that order) * Whitelisted IPs will never be banned * Blacklisted IPs will receive HTTP 403 Forbidden * Example: array('10.0.0.1', '192.168.0.1/24', '172.16.0.0/12'); * To only allow access to whitelisted IPs, set blacklist to: array('0.0.0.0/0'); */ $rcmail_config['defense_whitelist'] = array('127.0.0.1'); $rcmail_config['defense_blacklist'] = array(); /* IP is banned when there are failed * login attempts within seconds */ // Number of failed attempts until ban. Set to 0 to never ban (why would you do that?) $rcmail_config['defense_fail_max'] = 5; // Reset fail counter after this number of seconds $rcmail_config['defense_fail_reset'] = 600; // Default ban period $rcmail_config['defense_ban_period'] = 120; /* Ban with HTTP status * If set to true: Banned IPs are treated as blacklisted, and will receive * a HTTP 403 Forbidden response instead of a login screen * If set to false (default): Banned IPs receive login screen with red warning * showing duration of ban remaining */ $rcmail_config['defense_ban_httpstatus'] = false; // Repeated offenders have their banperiod multiplied, set to 1 to not multiply $rcmail_config['defense_repeat_multiplier'] = 4; // Reset repeat offender count after this number of seconds or // multiply last ban period by , whichever is greater $rcmail_config['defense_repeat_reset'] = 86400; // Name of table in database $rcmail_config['defense_db_table'] = 'defense'; // Expire database entries more than X days old. Set to 0 to never expire $rcmail_config['defense_db_expire'] = 30; // Log attempted passwords (could be insecure, disabled by default) $rcmail_config['defense_log_pwd'] = false; // Enable debug log to logs/defense.log $rcmail_config['defense_debug_enabled'] = false; ?>