# Account Lockout

SFTP and SCP are easy targets for brute force attacks on the internet. To protect our customers from unauthorised access, Couchdrop implements an account lockout policy by default. 

After 5 incorrect attempts in 5 minutes, accounts are locked for 15 minutes. 

This option can be disabled globally, but we do not recommend it. 

<figure><img src="https://391958821-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FpokYqd27yrOUxIBhyvbF%2Fuploads%2FTjPm1QJm4CS2N6OTykse%2FScreenshot%202024-03-25%20at%2011.39.52%20AM.png?alt=media&#x26;token=7b6f66c9-fab5-4cc4-8eb9-349f20761636" alt=""><figcaption></figcaption></figure>