Roundup Tracker - Issues

Message6538

Author rouilj
Recipients ber, rouilj
Date 2019-06-07.20:39:30
Message-id <1559939970.68.0.419915307125.issue2550949@roundup.psfhosted.org>
In-reply-to 
Bern, with the rate limit mechanism in place,
do you think this can be closed?

You suggested a textcaptcha after so many failed attempt
or logging all failed attempts and notifying the user.
That would require a different framework and also allows the
attacker to eat more resources than the rate limit solution does.

I have a couple more changes to make to rate limit: setting the
config value to 0 disables the rate limiting code, change
config to verify that integer value is not negative.

Also password migration/upgrade test is now passing (technically
xpassing). The xfail marker has been removed.

I have no clue what fixed this.

-- rouilj
History
Date User Action Args
2019-06-07 20:39:30rouiljsetmessageid: <1559939970.68.0.419915307125.issue2550949@roundup.psfhosted.org>
2019-06-07 20:39:30rouiljsetrecipients: + rouilj, ber
2019-06-07 20:39:30rouiljlinkissue2550949 messages
2019-06-07 20:39:30rouiljcreate

Supported by The Python Software Foundation,
Powered by Roundup

Last modified: Fri Feb 28 22:02:04 EST 2020