[SOLVED] Temporary IP banning

[exoban]

I'm not entirely sure if this would be done with PHP or not. When a user makes 5 failed login attempts, I want to require a CAPTCHA to login every following attempt. After a certain amount of time without any failed attempts, the CAPTCHA is no longer required.

 

A lot of Google's services/websites use this system. For example, Gmail or YouTube

 

How could I do this based on IP addresses? I thought of temporarily storing it in a MySQL database, but more efficient methods might be out there.

 

Thanks to whoever helps out.

[trq]

I thought of temporarily storing it in a MySQL database, but I more efficient methods might be out there.

 

That is indeed probably the easiest approuch.

[exoban]

I thought of temporarily storing it in a MySQL database, but I more efficient methods might be out there.

 

That is indeed probably the easiest approuch.

 

Alright. What's the best way to flush out old IP logs from the database though? I'm thinking of using CRON for a scheduled clean up.

[trq]

I'm thinking of using CRON for a scheduled clean up.

 

Once again, your thinking allong the right lines. Just store a timestamp with the ip then form a query to remove records older than you wish.

[exoban]

I'm thinking of using CRON for a scheduled clean up.

 

Once again, your thinking allong the right lines. Just store a timestamp with the ip then form a query to remove records older than you wish.

 

Just had to be sure, thanks.