1016
Brute force protection (rytter.me)
submitted 5 months ago by anders@rytter.me to c/memes@lemmy.ml
111 comments fedilink hide all child comments

Brute force protection

@memes

you are viewing a single comment's thread
view the rest of the comments
[-] gibmiser@lemmy.world 130 points 5 months ago

As a non programmer, is the joke that humans will retype their password assuming that they made a typo?

If so, sick indeed.

[-] Infynis@midwest.social 104 points 5 months ago

The guy coding made it so, on your first attempt, even if you answer correctly, it will tell you your login failed due to incorrect username or password, to joke about how it feels like you always get it wrong on the first try

[-] soloner@lemmy.world 17 points 5 months ago* (last edited 5 months ago)

The logic is bugging me, though. It should be if isFirstAttempt || !isPasswordCorrect

I understand the meme is trying to convey in spite of being correct to still return an error, but then it doesn't account for when the password is actually incorrect.

[-] QuaternionsRock@lemmy.world 48 points 5 months ago* (last edited 5 months ago)

That defeats the brute-force attack protection…

The idea is that brute-force attackers will only check each password once, while real users will likely assume they mistyped and retype the same password.

The code isn’t complete, and has nothing to do with actually incorrect passwords.

load more comments (2 replies)
load more comments (2 replies)
load more comments (5 replies)
this post was submitted on 13 Mar 2024
1016 points (96.8% liked)

Memes

44788 readers
2853 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS
gary_host_laptop@lemmy.ml
sexy_peach@feddit.de
cyclohexane@lemmy.ml
cypherpunks@lemmy.ml