Ghost

TryGhost/Ghost

Fork 0

mirror of https://github.com/TryGhost/Ghost.git synced 2024-11-28 22:43:30 +03:00

Commit Graph

Author	SHA1	Message	Date
Fabien 'egg' O'Carroll	2ff81cc5d3	🔒 Fixed rate limiting for user login (#15336 ) refs https://github.com/TryGhost/Team/issues/1074 Rather than relying on the global block to stop malicious actors from enumerating email addresses to determine who is and isn't a user, we want our user login brute force protection to be on an IP basis, rather than tied to the username.	2022-08-31 10:33:42 -04:00

Author

SHA1

Message

Date

Fabien 'egg' O'Carroll

2ff81cc5d3

🔒 Fixed rate limiting for user login (#15336 )

refs https://github.com/TryGhost/Team/issues/1074

Rather than relying on the global block to stop malicious actors from
enumerating email addresses to determine who is and isn't a user, we
want our user login brute force protection to be on an IP basis,
rather than tied to the username.

2022-08-31 10:33:42 -04:00

1 Commits