Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Authentication attempts aren't rate-limited #495

Closed
Changaco opened this issue Jan 4, 2017 · 0 comments · Fixed by #699
Closed

Authentication attempts aren't rate-limited #495

Changaco opened this issue Jan 4, 2017 · 0 comments · Fixed by #699
Assignees
@Changaco
Labels
defense protecting ourselves, our users and innocent third-parties

Comments

@Changaco
Copy link
Member

Changaco commented Jan 4, 2017

Rate-limiting helps prevent timing attacks (#489), brute force, denials of service, and other nuisances (e.g. #478).
@Changaco Changaco added the defense protecting ourselves, our users and innocent third-parties label Jan 4, 2017
@Changaco Changaco self-assigned this Sep 15, 2017
@Changaco Changaco mentioned this issue Sep 17, 2017
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Changaco Changaco

Labels
defense protecting ourselves, our users and innocent third-parties
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Implement rate limiting liberapay/liberapay.com
1 participant
@Changaco