lee-anne Hi, I have tried to search the forum/web but cannot find anything on MFA/2FA auth for both Admins and Clients. Is this on the radar please? As it is a deal breaker. Thanks
BelleNottelling It is one of the road-mapped requirements before we will consider FOSSBilling to be fully production-ready.
chiareu Howdy, I think the following security measures should be considered: - reCAPTCHA for client authentication (currently only works for client registration) - limiting access to the administration panel only from certain IPs - 2FA for client authentication and administration - Brute-force protection for client login and admin panel login
jaapmarcus - limiting access to the administration panel only from certain IPs Allready implemented - Brute-force protection for client login and admin panel login There is allready a rate limit implemented …