Jay, I am wondering what prevents repeated wrong password attempts on a person's account so that they end up causing denial of service attacks? I realize the Turing number keeps automation at bay, but there are always the pains-in-the-rear in manual mode. Can you restrict repeated attempts from only certain IP addresses? IE once 3 incorrect attempts from the same IP, for instance, maybe that IP is automatically ignored for that account for say 24 hours? It would force the pain to reboot to get a new Ip from his/her DHCP server, at minimum.
As a thought, Chuck --- You are currently subscribed to e-gold-tech as: archive@jab.org To unsubscribe send a blank email to [EMAIL PROTECTED] Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) via the web and shopping cart interfaces to help thwart keystroke loggers and common viruses.
