Comments (18)
Sure, this could be implemented as optional feature.
I appreciate your reply, however, I don't see this as "optional" as the naked IP address isn't of much use. I frequently receive mails by users who simply don't know what it is. (and for some reason, you can't even copy the IP address from the notification, you have to memorize it and enter it by hand in the geolocation service of your choice. ) All the services I know of that alert users in case of a suspicious login give the geolocation based approximate location. This is essential to make it useful, as the decision what to do with this piece of information is up to the user.
from suspicious_login.
Or use geoip2 server module for lookups.
It is available to nginx and apache2 too.
Maxmind database (geoip2lite) are free.
Lookups are then internal.
https://github.com/maxmind/libmaxminddb
https://github.com/leev/ngx_http_geoip2_module
https://maxmind.github.io/mod_maxminddb/index.html
from suspicious_login.
No,
there is no need to install a plugin. It just runs out of the box on any browser. its just a browser lookup.
from suspicious_login.
at least provide a link to a geolocation service
do you know any hosted FLOSS that does that?
from suspicious_login.
IMO we should have this as a service in core (and then apps that can rpovide the lookup). As this could be useful in other parts as well.
from suspicious_login.
at least provide a link to a geolocation service
do you know any hosted FLOSS that does that?
I honestly don't know. But if geoip data is freely available, I would indeed think that @rullzer has it right and linking to an external service would be a kludge anyway.
from suspicious_login.
at least provide a link to a geolocation service
do you know any hosted FLOSS that does that?
DD-WRT uses Flagfox just like this:
https://iplookup.flagfox.net/?ip=95.217.53.153
from suspicious_login.
at least provide a link to a geolocation service
do you know any hosted FLOSS that does that?
DD-WRT uses Flagfox just like this:
That would require the user to install a browser extension. That's something that very few of my users will no, almost certainly not those who innundate me with mails because they are confused about notifications received from the app. But given that there are geoip2 modules for both Apache and NGINX, as @jookk says, the latter sound like a reasonable way to go.
from suspicious_login.
No,
there is no need to install a plugin. It just runs out of the box on any browser.
Could this be implemented in the app? I guess the effort should be small @ChristophWurst The thing is that I still frequently get support requests from users who have no idea what to do with this. Alternatively I could just uninstall the app, but I'd rather see it made more usable.
from suspicious_login.
Sure, this could be implemented as optional feature.
from suspicious_login.
It might be enough if the email contains the url to the service linked to the ip address.
from suspicious_login.
It might be enough if the email contains the url to the service linked to the ip address.
same for the notification in Nextcloud (including in the mobile apps)
from suspicious_login.
It is a particular nuisance, that even when you know what IP addresses are and how they are related to your geographical location, you cannot copy the IP address from the notification shown in the nextcloud web interface in order to paste it into the search field of a geolocation provider. You have to memorize it and type it by hand.
from suspicious_login.
As you know this isn't a bug of the suspicious login app nextcloud/notifications#572 😉
from suspicious_login.
As you know this isn't a bug of the suspicious login app nextcloud/notifications#572 wink
@ChristophWurst Thanks, I wasn't aware that this bug had been reassigned. But haven't I seen clickable notifications in the past?
Wouldn't it be possible for the suspicious logins app to create notifications that contains the ip address in form of a clickable URL, clicking which looks the IP address up at a geolocation website?
from suspicious_login.
Wouldn't it be possible for the suspicious logins app to create notifications that contains the ip address in form of a clickable URL, clicking which looks the IP address up at a geolocation website?
This sounds like a good enhancement idea to me
from suspicious_login.
Wouldn't it be possible for the suspicious logins app to create notifications that contains the ip address in form of a clickable URL, clicking which looks the IP address up at a geolocation website?
As, as per the previous comments.
from suspicious_login.
As, as per the previous comments.
So are you implying that currently, clickable notifications are not implemented? I thought I had seen such notifications in the past (recommending the installation of certain apps)
Well, if that's the case, there is probably nothing preventing you from embedding clickable links into the warning emails that the app sends out. Wouldn't this be doable with just a few lines of code? For me, this would make life quite a bit easier, if I could tell my users to just click the link in the mail.
from suspicious_login.
Related Issues (20)
- First (legitimate) login attempt always fails (silently) HOT 7
- [I18N] Gettext escaping issue
- [feature] Whitelist IPs HOT 2
- Misleading german translation in machine learning chart legend HOT 4
- Memory consumption
- Log spam `jsonSerialize() should either be compatible with` HOT 1
- Setup psalm
- ValueError: random_int(): Argument #1 ($min) must be less than or equal to argument #2 ($max) HOT 10
- New login location detected email messages HOT 1
- App icon is inverted on app management
- Replace lint.yml with split workflows
- Dependency Dashboard
- Update rubixML HOT 15
- App not passing integrity check in v26/25 HOT 3
- Too verbose logs when model not found HOT 1
- Unit tests don't execute against php 8.2
- Add button to email notifications to get more info about the suspicious ip HOT 1
- A new login into your account was detected - really a login, or just a try? HOT 1
- Drop support for PHP 7.4 HOT 2
- PHP unserialize(): Error at offset HOT 5
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from suspicious_login.