I have updated today my nextcloud to 10.0 Stable from 9.53 Stable. Everything got OK but a problem came :
When I log in on Firefox (same thing for Chrome), I have to wait 30 sec before files page appears. I hadn’t this problem before. I think it appeared when I have created some applications passwords I have deleted after.
Now, I have deleted all the password for applications, but the 30 seconds remain…
This is my access.log
EDIT : I have cut down my wifi and my cellphone had quick access to the server. So I think my IP was blocked because server think I try to bruteforce or something else. How can we control the blocked IPS and remove them ?
I think I have just run into exactly the same problem. In a few minutes, I changed my main passwords and created several application-specific passwords, but some of my clients attempted to connect to my server before I had the time to update their configuration with the new passwords. It was enough to have my IP flagged as a brute-forcing attacker, resulting in the same delay that you have noticed.
As far as I can tell, there is (for now) no way to modify or even access the list of flagged IPs from the administration interface. So what I did was to delete my IP directly from the SQL database:
DELETE FROM oc_bruteforce_attempts WHERE ip = ‘aaa.bbb.ccc.ddd’;
After that, all my clients could connect without any delay.
Thank you very much, it works perfectly ! Glad to see there is a good anti-bruteforcing system, but some extra options would be nice to configure and repair some mistakes
Thanks again anyway, you saved my life
Second the need for a reset-button, I had to go into mysql to delete the ip as above. For posterity’s sake, if anyone encounters ‘Server took too long to respond’ on the Android app, it might be that bruteforce protection is locking you out.
Thanks it worked for me as well.But I have a query that all my users are using via a single NAT IP ,then in that case what anyone user changes his/her password will make rest users unable to log-in.
Is there any process where it automatically detects correct user credentials before log-in instead of marking it as brute-force attacks.
I’ve got my Android client working with my new Nextcloud Box. It was returning “Server took too long to respond” but it is at least connecting now.
I find that using my cell data connection is faster than the WiFi connection on my LAN. I suspect I’m getting the same sort of problem described here?
If I understand correctly I can put this ‘trusted_proxies’ line in my config.php file and it might fix this. Would I use my local IP address for my phone at the moment or the one assigned by my ISP for the router as seen by the outside?