Joomla! Forum - community, help and support

Dear Friends..

I want to limit the no of login attempts upto 3 times to the administrator page http://mysite.com/administrator to stop sppaming attack.

please let me know what change i have to do in joomla core files. Also mention the file path and code.

thanks in advance.

I am not aware of any technique to limit the login attempts, and believe that it might also hinder and come in your way to access your joomla administration...
however for securing your admin directory you can refer to this thread
http://forum.joomla.org/viewtopic.php?f=470&t=681814

if you have a static IP, then you can use a .htaccess file to allow access to your admin directory only by your specific IP (you might google this)

install admin tools by akeeba and use it - https://www.akeebabackup.com/software/admin-tools.html

helps a lot with other very useful features for admin

-or-
use those htpassword and htaccess files for your admin folder

Thanks friends for reply.

i have installed some of the extensions like JHackguard,Encryption configuration and Admin-Tools but still there are many issues

1. Automatic User get created when run a CSRF Code file
2. Admin credentials are open when intercept the request using proxy hash is not working.

Details of Website is

PHP Built on: Windows NT CL-T197-441CN 6.1 build 7601
Database Version: 5.0.45-community-nt
Database Collation: utf8_general_ci
PHP Version: 5.2.13
Web Server: Microsoft-IIS/7.5
Web Server to PHP interface: cgi-fcgi
Joomla! Version: Joomla! 1.5.25 Stable [ senu takaa ama mamni ] 14-November-2011 18:00 GMT



Also let me know is it possible to use htaccess rule at iis server.

thanks in advance.

Mod. Note: Relocated the topic to Joomla 1.5 on IIS servers.

saahil51 wrote:Also let me know is it possible to use htaccess rule at iis server.

Yes, but the file is called webconfig by MS.