Re: [aerogear-dev] KC for UPS: Enable Brute Force Re: Security advice for UnifiedPush Server

On Tue, Nov 25, 2014 at 12:21 PM, Karel Piwko <kpiwko(a)redhat.com&gt; wrote: > On Tue, 2014-11-25 at 12:18 +0100, Matthias Wessendorf wrote: > > > > > > > Further, I have seen the chapter on "Brute Force Protection" which > is > > > > described in the Security Defenses documentation, > > > > and this seems like a reasonable security feature that I will > enable. > > > > > > Definitely. > > > > > > > On master, should we have this enabled by default? Currently it's not... > > and users explicitly need to enable this nice feature... > > > > I'd like to see in (long term) enabled by default. > > > > thoughts? > > I believe it makes enabling/disabling it makes a nice test case ;-) > well, that;s a different thing. I feel we should, for our users, enable it by default > > > > > > > > > _______________________________________________ > > aerogear-dev mailing list > > aerogear-dev(a)lists.jboss.org > > https://lists.jboss.org/mailman/listinfo/aerogear-dev > > > _______________________________________________ > aerogear-dev mailing list > aerogear-dev(a)lists.jboss.org > https://lists.jboss.org/mailman/listinfo/aerogear-dev > -- Matthias Wessendorf blog: http://matthiaswessendorf.wordpress.com/ sessions: http://www.slideshare.net/mwessendorf twitter: http://twitter.com/mwessendorf _______________________________________________ aerogear-dev mailing list aerogear-dev(a)lists.jboss.org https://lists.jboss.org/mailman/listinfo/aerogear-dev