PHPDevil Posted December 26, 2012 Share Posted December 26, 2012 Hi guys, I just wanted to see your views on whether or not to add a recaptcha on a login page. Reason behind this is mostly to reduce brute force (hopefully) Quote Link to comment Share on other sites More sharing options...
Dave Posted December 26, 2012 Share Posted December 26, 2012 I'd say have an invalid attempt counter and when they've entered their password wrong 3 times then flash up a captcha. Quote Link to comment Share on other sites More sharing options...
Dayo Posted December 26, 2012 Share Posted December 26, 2012 yea i would have a system to count attemptsthen when xx attemts are tried it will lock you out for 5-15 mins. Also for a project ive used a unique 10 digit salt so its much harder brute force Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.