Open alainmeier opened 9 years ago
Though there is a lot of entropy in both the ID of the message and in the generated password, it would not hurt to add some request throttling to prevent some brute force attacks. Something like Rack Attack would be perfect.
Though there is a lot of entropy in both the ID of the message and in the generated password, it would not hurt to add some request throttling to prevent some brute force attacks. Something like Rack Attack would be perfect.