validatePasswordFlood

Description

Protects against brute force attacks on a member's password

Syntax

void validatePasswordFlood (int $id_member[, string $password_flood_value[, bool $was_correct]])


Parameter $id_member

Expected type: Integer
Description: Member ID


Parameter $password_flood_value

Expected type: String
Description: The timestamp and number of tries separated with a | or false if they haven't tried to get the password yet


Parameter $was_correct

Expected type: Boolean
Description: Whether or not they got their password right on the previous attempt


Notes

  • Allows 5 attempts every 10 seconds
  • Doesn't tell them if the password was right
  • Destroys any cookie / session data
View all versions of this function
Advertisement: