Hi there, I have a client who's just got the usual error message when trying to log in to her account: Possible attack detected. This action has been logged. When I checked in the ISPConfig log (under Monitor), I see the following: I've already asked my client to remove her cookies in her browser because it looks like it's coming from there if I read the error message well. I'm not completely sure it's going to solve this issue for her, though. And, by the way, a lot of my clients don't even know how to do that and it can be annoying to explain sometimes... My first question is then: how a simple cookie in the browser can be so harmful for ISPConfig? I can connect to any bank account online without having to remove any cookie from my browser and it works just fine... Please forgive my ignorance on this matter but I just don't get it Second question, which is actually connected to the first one: appart from raising the limit (as I've seen in another thread on this forum) and putting our server at risk, isn't there any viable solution to this problem? Something you might be working on currently or any idea, that would fix this issue behind the scene, invisible for end users? Thanks!