1019
submitted 9 months ago by anders@rytter.me to c/memes@lemmy.ml

Brute force protection

@memes

you are viewing a single comment's thread
view the rest of the comments
[-] chraebsli@programming.dev 3 points 9 months ago

You can't really prevent a brute force attack. Even if you prevent it from one IP or so, you can still do "distributed" brute force attacks.

Also only allowing one password per 5 seconds or so per IP will not work if you have lots of users and they are at work and have the same IP.

this post was submitted on 13 Mar 2024
1019 points (96.9% liked)

Memes

45902 readers
2332 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS