I have a concern, that if I am exposing a port to the internet from home, I would like to minimise hackers targeting that port for brute force attacks.
Has there been any consideration of implementing Two Factor Authentication (2FA) - rather than just a simple username/password. Not fussed which 2FA method used, but maybe implementing TOTP via Google Authenticator might be the simplest route?
Alternatively, an admin option for automatically locking an account if there are multiple failed logins? (2FA preferred, but this option could be a potential workaround).
Customer support service by UserEcho