Hello, I've been using umami for a couple days now. I found out that it does not seem to have any prevention mechanism against bruteforce attacks. You could add maybe a lockout for a specific account or IP address even though they can easily become ineffective. For this reason I think the best solution is to add also 2-Factor-Authentication.
Let me know what you think and if you plan to introduce it.
Hello, I've been using umami for a couple days now. I found out that it does not seem to have any prevention mechanism against bruteforce attacks. You could add maybe a lockout for a specific account or IP address even though they can easily become ineffective. For this reason I think the best solution is to add also 2-Factor-Authentication.
Let me know what you think and if you plan to introduce it.