Quote:
Originally Posted by TheDoc
NATS locks the usernames for a very smart reason... if you use ajax, I can test the username's for a valid user, once it's a good user I can brute force attack that username.
With nats, every submit to check for a valid username, locks the username - along with a generalized error on a duplicate.
This is done for a very good reason, if you screw with it, you're chopping your own balls off.
|
you got a point there, didn't think about it
__________________
This post is endorsed by CIA, KGB, MI6, the Mafia, Illuminati, Kim Jong Il, Worldwide Ninjas Association, Klingon Empire and lolcats. Don't mess around with it, just accept it and embrace the truth
|