WebAppSec/Secure Coding Guidelines: Difference between revisions

Jump to navigation Jump to search

WebAppSec/Secure Coding Guidelines (view source)

Revision as of 00:18, 16 June 2011

50 bytes added ,  16 June 2011
→‎Admin Login Pages
Line 285: Line 285:
1. Controls are in place to prevent brute force attacks<br>
1. Controls are in place to prevent brute force attacks<br>
Options (any of these are fine):  
Options (any of these are fine):  
* Admin page behind ssl vpn (most popular option)
* Account Lockout
* Account Lockout
* CAPTCHA's after 5 failed logins
* CAPTCHA's after 5 failed logins
Mcoates
Confirmed users
491

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/319697"

Navigation menu