Page 1 of 1
bruteforce accounts/passwords at risk
Posted: Mon Sep 16, 2013 3:57 pm
by viktor
What should I do to prevent people from using bruteforce trying to guess people's passwords? There's currently no "You've entered 5 wrong passwords please wait 5 minutes" for example?
Thanks.
Re: bruteforce accounts/passwords at risk
Posted: Mon Sep 16, 2013 4:43 pm
by Kent Briggs
viktor wrote:What should I do to prevent people from using bruteforce trying to guess people's passwords? There's currently no "You've entered 5 wrong passwords please wait 5 minutes" for example?
Thanks.
That would be a slow brute force attack since it requires packet exchanges across the internet for each try. But you could always implement your own login system from a web page.