One popular approach is to install Fail2Ban to monitor log files and lock out repeat offendors.
Of course that only works if your login system reports failed login attempts to a system log file.
A lot of websites now require registration, meaning that users need to be assigned a username and password.
Here are some simple steps to make the process more secure.
Again, you can use the form below to test this regular expression: Restricting which characters can be used is not good practice as punctuation and other symbols provide extra security.
Here we have an enhanced version of the above code where we've added HTML5 handler to the first password field which updates the pattern required by the second password field - in effect forcing them to be identical: Here you can see a screen shot from Safari of the form being completed.In some cases, such as on mobile devices, displaying the password may improve usability without compromising security.After all it's only the browser display being obfuscated and not the data transfer.In most browsers - those that support Java Script 1.5 (Firefox, Chrome, Safari, Opera 7 and Internet Explorer 8 and higher) - you can use more powerful regular expressions. The code presented above is fine in that it checks everything that we wanted to check, but uses a lot of code to test each requirement individually and present different error messages.We're going to show you now how to apply the password tests using a single regular expression.