[Catalyst] Rate limiting password attacks

Jonathan Rockway jon at jrock.us
Sun Aug 19 06:04:52 GMT 2007

Antano Solar wrote:
> I was just wondering why can't the form fields for username and
> password be changed after every x attempts. And the post data checked
> for the new fields.

This is a good approach, and is automatic if you use the FormCanary or
RequestToken plugins.

Jonathan Rockway

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 370 bytes
Desc: OpenPGP digital signature
Url : http://lists.scsys.co.uk/pipermail/catalyst/attachments/20070819/3102=

More information about the Catalyst mailing list