Rate Limiting

  • Could we request rate limiting on the plugin to prevent a scripted attack where a bot continuously requests password codes.

    For example only 3 codes per user in 24 hours?

Viewing 1 replies (of 1 total)
  • Plugin Author dominic_ks

    (@dominic_ks)

    Hey @megacito,

    Thanks for the suggestion, yeah I think we could probably do something like that. I suspect we’d also need something option in wp-admin so that an administrator is able to release the lock on a user’s account in case of genuine users managing to fail a password reset X times.

Viewing 1 replies (of 1 total)
  • The topic ‘Rate Limiting’ is closed to new replies.