Quote:
Originally Posted by necoeds
Don't want to use pennywize anymore... is strongbox the best choice?
|
Use a form authentification.
Ip Ban after 3 unsuccessful attempts (10 minutes)
Autogenerate users's passwords and write somewhere this information on your join page.
a good captcha (kcaptcha is pretty good for me)
No captcha with an unmodified charset (if chameleon submitter could autofill the captcha, then it is also a weak captcha for brute force tools).
If you are a php/mysql coder, you can do it yourself.