You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Subsonic has an undocumented feature where if you have basic HTTP authentication that uses the same credentials as the subsonic user, it effectively replaces the built in authentication.
I prefer using this with Subsonic since it makes it easy to hook into fail2ban to prevent brute force attacks. DSub has support for this, see memen45/SubMusic#46 for some additional details where support for it was added to a Subsonic app for Garmin watches.
I was searching around and didn't see any mention of basic HTTP authentication for gonic. Is that something that could be supported? How are others preventing brute force logic attacks against their gonic servers?
The text was updated successfully, but these errors were encountered:
Subsonic has an undocumented feature where if you have basic HTTP authentication that uses the same credentials as the subsonic user, it effectively replaces the built in authentication.
I prefer using this with Subsonic since it makes it easy to hook into fail2ban to prevent brute force attacks. DSub has support for this, see memen45/SubMusic#46 for some additional details where support for it was added to a Subsonic app for Garmin watches.
I was searching around and didn't see any mention of basic HTTP authentication for gonic. Is that something that could be supported? How are others preventing brute force logic attacks against their gonic servers?
The text was updated successfully, but these errors were encountered: