function security_review_check_failed_logins_help in Security Review 6
Same name and namespace in other branches
- 7 security_review.help.inc \security_review_check_failed_logins_help()
File
- ./security_review.help.inc, line 222
- Main help definition.
Code
function security_review_check_failed_logins_help($results = NULL) {
$element['title'] = t('Abundant failed logins from the same IP');
$element['descriptions'][] = t("Failed login attempts from the same IP may be an artifact of a malicous user attempting to brute-force their way onto your site as an authenticated user to carry out nefarious deeds. ");
$last_check = security_review_get_last_check('security_review', 'failed_logins');
if ($last_check['skip'] == '1') {
$element['findings']['descriptions'][] = _security_review_check_skipped($last_check);
}
elseif ($last_check['result'] == '0') {
$element['findings']['descriptions'][] = t('The following IPs were observed with an abundance of failed login attempts.');
if (is_null($results)) {
$results = security_review_check_failed_logins();
}
foreach ($results['value'] as $ip) {
$element['findings']['items'][] = array(
'safe' => check_plain($ip),
'raw' => $ip,
);
}
}
return $element;
}
