Block request for multiple unsuccessful logins for a period of time

Question

I have a web site and I want to block request from BOTs and attempt brute force login to my web site.

Now I\'m using Session for storing lo

Answer 1

If i were doing this i would use a column in a database to store the login attempt number and a date time stamp for the first attempt. Then have some logic around the login

 if(loginAttempt>5 && DateTime.Now