Jump to content

Recommended Posts

Posted

I just had a thought.

 

In the forums we are required to post our username, server and domain sometimes.

So if I want to paralyze a site, could I not just attempt a few logins and thereby lock someone out of their account?

 

Is there a feature to reset via one's email (brute force counter not password) or security question that doesn't otherwise bother the admins?

Posted

If someone tried that they'd only serve to block their own IP, If multiple people try and fail to access an account multiple times then the account gets locked, but it's only temporary. having the system you mention would be bad because then we'd basically be just as well off without a brute-force system.

  • Like 1

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...