Closed krassowski closed 6 years ago
There should be one message for both known and unknown addresses. Consecutive, failed login attempts from a single host or to the same account should result in exponentially-like deferred responses to prevent brute-force attacks.
There should be one message for both known and unknown addresses. Consecutive, failed login attempts from a single host or to the same account should result in exponentially-like deferred responses to prevent brute-force attacks.