You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The current version of Huly SelfHosted does not have any protection against password mining, as it allows an unlimited number of attempts for authorization.
Environment
Huly v0.6.280 SelfHosted.
Possible solutions
This will significantly reduce the likelihood of attacks:
Add Google reCAPTCHA or other captcha to authorization and registration page.
Add two-factor authorization.
In addition, add limit the number of authorization requests from a single IP address.
The text was updated successfully, but these errors were encountered:
Description of the issue
The current version of Huly SelfHosted does not have any protection against password mining, as it allows an unlimited number of attempts for authorization.
Environment
Possible solutions
This will significantly reduce the likelihood of attacks:
The text was updated successfully, but these errors were encountered: