On 5/6/07, Todd Allen toddmallen@gmail.com wrote:
On 5/6/07, Michael Billington michael.billington@gmail.com wrote:
Just to note, AmiDaniel has filed a bug report about the security of the login system. I particularly like the idea of using captchas after multiple attempts, to stop automated password cracking. The bug report is at http://bugzilla.wikimedia.org/show_bug.cgi?id=9816
--Michael Billington _______________________________________________ WikiEN-l mailing list WikiEN-l@lists.wikimedia.org To unsubscribe from this mailing list, visit: http://lists.wikimedia.org/mailman/listinfo/wikien-l
How about, "use a captcha for all login attempts"? Right now, we're having a ton of trouble with a sockmaster that
-- Freedom is the right to know that 2+2=4. From this all else follows.
That cuts off my messages during sending, apparently. Meant to say he likes to bot through old accounts and find weak passwords, then use them to evade semiprotection on his vandalism targets. What could possibly be bad about a captcha, unless you're a login bot?