locksshould - Infinite Lexicon - Infinite Lexicon

locksshould

Locksshould is a term used in information security discussions to describe a policy or mechanism that ties SSH access controls to automatic lockout actions following suspicious authentication activity. The term blends “lock” and “SSH” and is used to explore safeguards against brute-force and credential-stuffing attacks on SSH services.

Origin and usage of the term are informal; it does not represent a standardized protocol. In discussions,

Mechanisms and implementation options in practice may involve server configurations and external tools. SSH server settings

Criticism and considerations center on the potential downsides of lockouts. Overly aggressive policies can lock out

Related concepts include SSH, authentication, account lockout policies, rate limiting, and security tools such as fail2ban.

authentication.

a

denial-of-service

implementations

authentication,