[Catalyst] Rate limiting password attacks
Jonathan Rockway
jon at jrock.us
Sun Aug 19 06:04:52 GMT 2007
Antano Solar wrote:
> I was just wondering why can't the form fields for username and
> password be changed after every x attempts. And the post data checked
> for the new fields.
This is a good approach, and is automatic if you use the FormCanary or
RequestToken plugins.
Regards,
Jonathan Rockway
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 370 bytes
Desc: OpenPGP digital signature
Url : http://lists.scsys.co.uk/pipermail/catalyst/attachments/20070819/3102=
65ba/signature.pgp
More information about the Catalyst
mailing list