Would it be possible to increase the security on the login page (via web/mobile/etc). If the user enters an incorrect password, than make it take 10 seconds before a second attempt can be made?

Another good feature would be to limit the number of password retries that are allowed via the web before login is halted. This would not apply to local logins and a warning could be shown on the local login screen if such a thing happened...and the user would be given an option to allow web logins again...

I am worried about hackers using automated attacks to hack into our tonido devices...

Best Regards,

Krishna

Tonido already has the login-attempt-lockout built in. if it sees 5 incorrect password attempt within a time period, it will lock out for sometime and prevent any more login requests.

Also, you can setup "Remote login" challenge to deter phishing attacks (Set it up using TonidoAdmin->Settings->Account).

I raised a similar question directly to Tonido but got no response.

My question was that anyone can log in with a log in name and password but i see no ability to stop someone brute force attacking the tonido plug. Or anyway of determining what ip address is accessing my plug with a legitimate password. This feature would help me know weather a password has been compromised.
i raised the question to them about 3-4 months back and was hoping that a solution would have been included in the recent upgrade but alas it was not.