alt Hacker NewsWell, seeing how systems are brute-forced and how much speed you can achieve today, these delays are more and more welcome on my end.
Well, seeing how systems are brute-forced and how much speed you can achieve today, these delays are more and more welcome on my end.
Authentication systems had lock out periods or increasing delays since decades. 1 attempt per 5 seconds and 12 attempts per minute would be equivalent for brute force. And 12 attempts per minute would be a very loose lock out policy.