Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
im3w1l
11y ago
0 comments
Save
Share
A site I know allows 5 login attempts per hour. That seems plenty for legitimate purposes. I've never heard anyone complain.
0 comments
2 comments · 1 top-level
top
newest
oldest
warmwaffles
11y ago
· 1 in thread
But it doesn't matter if they keep hitting their service with a list of known emails and then sending bogus passwords, 5 times per email per host.
im3w1l
OP
11y ago
Sorry for late reply. It was 5 attempts per hour per ip. Not per email.
j
/
k
navigate · click thread line to collapse
