Changes between Initial Version and Version 1 of Ticket #36651, comment 4
- Timestamp:
- Oct 13, 2025, 4:17:07 AM (4 weeks ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #36651, comment 4
initial v1 12 12 Of course we have implemented rate-limit too. 13 13 14 But even though we have rate-limit, it's still less secure, because hackers can try with different passwords as many as times until they reach rate-limit for inactive user. 14 But even though we have rate-limit, it's still less secure, because hackers can try with different passwords until they reach rate-limit for inactive user. 15 If we check if user can authenticate first, we can prevent password guessing even hackers try with different passwords until they reach rate-limit.