Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
mtogo
on Aug 11, 2011
|
parent
|
context
|
favorite
| on:
Xkcd Password Generator
Locking the account is the wrong way to go about it since it makes DoS on known accounts trivial.
Blocking the IP or an increasing time between tries is, afaik, the "right way".
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
Blocking the IP or an increasing time between tries is, afaik, the "right way".