From a15d877ba8e12ba6659aad69d63b8b73256144ad Mon Sep 17 00:00:00 2001
From: Aleksander Machniak <alec@alec.pl>
Date: Wed, 11 Nov 2015 12:53:43 -0500
Subject: [PATCH] Added brute-force attack prevention via login rate limit (#1490566)

---
 SQL/oracle.initial.sql |    4 +++-
 1 files changed, 3 insertions(+), 1 deletions(-)

diff --git a/SQL/oracle.initial.sql b/SQL/oracle.initial.sql
index 0110abf..82ee1d8 100644
--- a/SQL/oracle.initial.sql
+++ b/SQL/oracle.initial.sql
@@ -7,6 +7,8 @@
     "mail_host" varchar(128) NOT NULL,
     "created" timestamp with time zone DEFAULT current_timestamp NOT NULL,
     "last_login" timestamp with time zone DEFAULT NULL,
+    "failed_login" timestamp with time zone DEFAULT NULL,
+    "failed_login_counter" integer DEFAULT NULL,
     "language" varchar(5),
     "preferences" long DEFAULT NULL,
     CONSTRAINT "users_username_key" UNIQUE ("username", "mail_host")
@@ -218,4 +220,4 @@
     "value" long
 );
 
-INSERT INTO "system" ("name", "value") VALUES ('roundcube-version', '2015030800');
+INSERT INTO "system" ("name", "value") VALUES ('roundcube-version', '2015111100');

--
Gitblit v1.9.1