Restrict or limit login attempts
For security reasons there should be a way to restrict or limit failed login attempts. Because now bbpress also shows when username or password or both was/ were wrong. So hacking a profile is simpler than it should be.
Is there a way, maybe in template files to limit the possible attempts? Maybe three failed logins per hour – or something like this.
You must be logged in to reply to this topic.