search

rejetto / hfs

HFS is a web file server to run on your computer. Share folders or even a single file thanks to the virtual file system.
GNU General Public License v3.0
2.29k stars 227 forks source link

antibrute plugin #577

Closed W-i-n-7 closed 6 months ago

W-i-n-7 commented 6 months ago

it delays even a successful login after having a failed attempt

W-i-n-7 commented 6 months ago

oops this should have been bug report sorry

rejetto commented 6 months ago

that's how it is supposed to work, otherwise it would not be effective for security. you make am http request for login, and if it doesn't respond shortly you know it's wrong, so disconnect and make another request. The only way to force waiting during a malicious attempt, is to delay even in case of success.

W-i-n-7 commented 6 months ago

that's how it is supposed to work, otherwise it would not be effective for security. you make am http request for login, and if it doesn't respond shortly you know it's wrong, so disconnect and make another request. The only way to force waiting during a malicious attempt, is to delay even in case of success.

oh that makes sense now i know