-
## Description
The authentication routes without rate-limits are open to all kinds of attacks and abuse like:
Brute-Force Attacks:
These attacks involve trying different password combinations r…
-
Love this plugin! It works really well for the described use case and is flexible enough for different implementations.
However, one thing which doesn't seem to be supported is rate limiting a sing…
-
Currently, if a rdap-server has shino configuration in order to allow credentials and roles management, there isn't a mechanism to protect the server from a brute force attack to gain credentials for …
-
When UFW is used as firewall timeouts occur ( #106 #69 #77 #29 #17 ...) since the firewall's rate limiting kicks in if **more than 6 connections within 30 seconds are established**:
> **ufw** supp…
-
Link to the tool: https://... (minimum 1 required):
[link] https://github.com/HernanRodriguez1/SharpBruteForceSSH [/link]
List of tags separated by comma: tag1,tag2,tag3... (required):
[tags] …
-
### Description
1. Since the auth tokens are public, this allows attackers to brute force with credential stuffing attacks, by hitting the firebase auth api directly. Firebase should allow overrides …
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Feature Description
Need to handle the form validation while login or sign up to website
### Use Case
A use…
-
## Summary
KeePassXC currently uses [AES or Twofish](https://keepassxc.org/docs/#faq-security-why-pm) block cipher to encrypt a database. This issue is a feature request to add support for an estab…
-
lots of great ideas on this here:
https://www.owasp.org/index.php/Blocking_Brute_Force_Attacks
-
Minetest should drop support for SHA1 authentication as it is not secure and allows downgrade attacks. This requires:
* A migration path to force users to upgrade to SRP
* /setpassword to generate…