Live Help
MammothGames - Gaming for Everyone
Please Login or Register

Knowledgebase

MGPortal > Knowledgebase > Bad Password

Bad Password

Version 3.0 introduces the concept of advanced client access rights and more checks and balances to prevent possible exploitation of the account or account password guessing. If a client attempts to use the global server admin password and does not enter the correct password the server will automatically disconnect that client. The client can log back in immediately and try again. If he gets it wrong again he will be kicked one more time. A total of 3 tries are permitted before the server will enact a “Timed Ban” for the account. The first time the timed ban is triggered that IP address is blocked for 15 minutes. While the timed ban is active the client will receive a notification that they are on the timed ban list and how much time remains before they are allowed back in. After the timed ban is lifted the client can repeat his attempts to use the admin password. Again they will get 3 tries, but this time the timed ban will be 30 minutes, then 45 minutes, then 1 hour, then 1:15, then 1:30 and so on up to 3 days max. Timed bans are not recorded in the BAN file. They are cached locally by the server. Restarting the server will flush them, or a server admin can simply select the account name in the User Editor and click the Update button to flush the timed ban. Only a server admin can do this. A regular “Add User” account can not. These same concepts apply to individual accounts created on the server which have their own unique password. The difference is that a user account login with the wrong password will get 10 tries before they are automatically added to the timed ban list. The timed ban will be 10 minutes and will increase in 10 minute increments. The next time they fail their 10 tries they will be banned 20 minutes, then 30 minutes and so on until a maximum timed ban for logins of 4 hours. There are several other areas of the program that will trigger timed bans that vary in their trigger counts, intervals and maximum times.

Each of the timed bans no matter what triggered it can be manually lifted using the Server admin Update trick mentioned above.



Was this answer helpful?

Add to Favourites Add to Favourites

Print this Article Print this Article

Client Login

Email

Password

Remember Me

Search