Posted by Sanders Kaufman on 11/02/07 20:15

"Jerry Stuckle" <jstucklex@attglobal.net> wrote in message
news:A6adnVcvS9Fxr7fanZ2dnUVZ_o_inZ2d@comcast.com...
> Sanders Kaufman wrote:

>> The current user, of course. Or in a word... "currency".
>> While it's true a user can come from any number of IP's - they can only
>> come from one per session.
>>
>
> Another example would be if the user has a dynamic address and the lease
> expires. There is nothing to indicate a new lease will get the same ip
> address.

That's only a problem if, between the time they login and the time they
access secure data, the IP is renewed.
Even then, the only "problem" is that they gotta login again.

And that happens how often? Coupla hours? Coupla days? Sometimes less
frequently?

But you got me thinkin....
I should be auto-checking to see if there's a brute-force attack, or if
someone is desperately trying to access their own account.

I don't KNOW that none of my users are getting a more frequent IP change - I
just assume so, and have not heard otherwise.
But my system should have a feature to tell when someone's login is getting
hammered - especially if it's coming from multiple IP's.

[Back to original message]