473,396 Members | 1,966 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > asp.net > questions > session lock out

Join Bytes to post your question to a community of 473,396 software developers and data experts.

session lock out

I have an asp.net application using forms auth with a login window. I have
datanames and encrypted passwords in data tables and after 3 unsuccessful
user login attempts the user is directed to an access denied page. I was
just wondering if for example a user named Tom makes 3 failed login attempts
how to lock out any future attempts by user login name Tom, say for the next
20-30 minutes. thanks.
--
Paul G
Software engineer.
Nov 19 '05 #1
2 1531
One way is to add another field to your database table that has the lockout
time that you set after the 3rd attempt to the current time.
Every time someone logs in, you check if it's been 30 minutes since the
lockout time. If the lockout time field is empty, or it's been 30 minutes,
you allow the user to login in, and clear out the field if it wasn't empty
to begin with.

"Paul" <Pa**@discussions.microsoft.com> wrote in message
news:74**********************************@microsof t.com...
I have an asp.net application using forms auth with a login window. I have
datanames and encrypted passwords in data tables and after 3 unsuccessful
user login attempts the user is directed to an access denied page. I was
just wondering if for example a user named Tom makes 3 failed login
attempts
how to lock out any future attempts by user login name Tom, say for the
next
20-30 minutes. thanks.
--
Paul G
Software engineer.

Nov 19 '05 #2
ok thanks sounds like a good idea.
--
Paul G
Software engineer.
"Marina" wrote:
One way is to add another field to your database table that has the lockout
time that you set after the 3rd attempt to the current time.
Every time someone logs in, you check if it's been 30 minutes since the
lockout time. If the lockout time field is empty, or it's been 30 minutes,
you allow the user to login in, and clear out the field if it wasn't empty
to begin with.

"Paul" <Pa**@discussions.microsoft.com> wrote in message
news:74**********************************@microsof t.com...
I have an asp.net application using forms auth with a login window. I have
datanames and encrypted passwords in data tables and after 3 unsuccessful
user login attempts the user is directed to an access denied page. I was
just wondering if for example a user named Tom makes 3 failed login
attempts
how to lock out any future attempts by user login name Tom, say for the
next
20-30 minutes. thanks.
--
Paul G
Software engineer.


Nov 19 '05 #3
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

6
Session State does not Work with Multithreading and SQL Server - Bug???
by: Ilia | last post by:
Hi folks, I have some problems with ASP.NET Session State. The following simple program runs well if the Session State set as "InProc". If I switch to "SQLServer", the changes, made by the...
ASP.NET
3
Use "Session" from page requested by code
by: Peter Theill | last post by:
Hi, I'm trying to include the content of a request into an Xml document: if (System.Web.HttpContext.Current.Session != null) { XmlDocument d = new XmlDocument(); d.Load(new...
ASP.NET
7
Session lock-up issue when requesting one webform from another.
by: Thomas Nielsen [AM Production A/S] | last post by:
Hi, I have one web form (WebForm1.aspx) from which i would like to display the output of another web form, WebForm2.aspx, in a controlled environment. I do this by using HttpWebRequest to...
ASP.NET
8
infinite session timeout
by: Joe Abou Jaoude | last post by:
hi, I have a web app with forms authentication and a timeout session of 20 mins for security reasons. I recently added a feature that allows users (if they want to) to automatically log in...
ASP.NET
4
Is access to the Session thread-safe?
by: Chris Newby | last post by:
When accessing, for example, an object stored in the session such as: Session.MyProperty = "Some Value"; Is access to MyObject thread-safe?
ASP.NET
2
Threading with an object and Session
by: Gavin Lyons via .NET 247 | last post by:
Hello, I'm writing a newsletter application which uses backgroundthreading. I'm using Session variable to report on progresswhile it loops through a dataset. The 'Status.aspx' pagerefreshes every...
ASP.NET
2
Can anybody explain this? (InProc Session locking broken)
by: Nick | last post by:
We have recently discovered that on our production environment certain aspx files, two to be certain, are displaying a behaviour we understand ought not to be possible under the (ASP).Net...
ASP.NET
2
Concurrent Access to same Session wrt Lock Time-out - what is it?
by: Kevin Frey | last post by:
Hello, I've been reading that ASP.NET serialises (ie. processes one at a time) HTTP requests if two simultaneous requests need to access the same session state. It also makes note that ASP.NET...
ASP.NET
2
mod_python + publisher + psp + session problems
by: exhuma.twn | last post by:
Hi again, as soon as I try to make use of the "session" object inside a psp-template file, I get the following error: Mod_python error: "PythonHandler mod_python.publisher" Traceback (most...
Python
0
How to detect session start and stop?
by: =?Utf-8?B?am1hZ2FyYW0=?= | last post by:
My program needs to do X when someone 'starts using' their Windows user account, and it should do Y when they 'stop using' their Windows user account. By 'starts using' I mean they log on, unlock...
.NET Framework
0
Merging data from multiple Excel files
by: ryjfgjl | last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
Data Management
0
Migrating Website to Cloud - Emmanuel Katto
by: emmanuelkatto | last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel
General
0
BarryA
Navigating the Data Structures and Algorithms (DSA)
by: BarryA | last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
Algorithms / Advanced Math
1
Looking to do Android software development, any suggestions? Is flutter better?
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
General
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Computer Hardware
0
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
General
0
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
C / C++
0
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
Online Marketing
0
The easy way to turn off automatic updates for Windows 10/11
by: Hystou | last post by:
Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
Windows Server

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!