Joined: 04 May 2005 Posts: 13207 Location: Arizona USA
Posted: Thu 30 Aug 2018, 20:50 Post subject:
Why do login programs permit login attempts as fast as a computer can process them? Login attempts should be limited by design to no more often than once every 5 seconds, with no que of attempts waiting. Few actual humans can try more often than that, so the limit wouldn't be noticed, and it would slow down brute force and dictionary attacks to the point that the attacker would get nervous that he was being traced and give up.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum You cannot attach files in this forum You can download files in this forum