Failed login returns 200 status code

Thread starter W1zzard
Start date May 27, 2025

W1zzard

Guest

May 27, 2025

This makes it hard to catch bruteforces in the logs, should return 401

edit:
SELECT COUNT(*) FROM xf_login_attempt WHERE FROM_UNIXTIME(attempt_date) > CURRENT_DATE()
-> 184468

and it's only 5 pm

fix:
edit LoginController.php, after $user = $loginService->validate($input['password'], $error);

change
return $this->view('XF:Login\Form', 'login', $viewParams);

to

$view = $this->view('XF:Login\Form', 'login', $viewParams)...

Read more

Continue reading...

Finder::setDefaultOrder vs Finder::order() differences in multi-column ordering

You must log in or register to reply here.

Similar threads Most view View more

A	failed: Expected response code "250" but got code "503", with message "503 550 Sender rate overlimit - 294.2 / 24h". Ashley S Dec 27, 2024 Xenforo RSS Feed
D	Passkey registration failed: invalid rpId hash danger@ Oct 29, 2024 Xenforo RSS Feed
P	Image optimisation fails with gd-webp encoding failed Paul B Sep 7, 2024 Xenforo RSS Feed
A	Mail Delivery Failed articulatedthoughts Apr 4, 2025 Xenforo RSS Feed
M	email error stream_socket_enable_crypto(): SSL operation failed with code 1. Mr Lucky Sep 16, 2024 Xenforo RSS Feed

Today's birthdays

This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.

Accept Learn more…

Back

Top Bottom