Forum

Hi Hugo, hiawatha is going great for me. I wanna block attacker ip after certain attack count limit. How it is possible in hiawatha? If any clue pls suggest me or implement at your side.

What kind of attacks are you talking about?

SQLI and XSS attacks

E.g. If i set SQLI attack count limit per ip to 10 then after 10 SQLI attempts it should block that ip.

You can set a ban on an SQL injection attempt, but it will always be after the first attempt. After 10 or any other amount, other than 1, is not possible. Banning on an XSS attempt is not wise, because the client which has, for example, <script> in the URL is the victim, not the attacker.