Silk Road forums
Support => Feature requests => Topic started by: jimbob966 on December 31, 2011, 03:28 am
-
I think a great security feature would be an account lockout on X attempts. I understand it'd be hard to recover your account if it got locked out, but I don't think the owners of the account would forget their passwords to a site like this. If they did, maybe talk to SR on these forums to recover it. I understand you can't have a password recovery link because that is very insecure.
*This feature might already be available, but I haven't seen it because I've never forgotten my password*
-Jimbob-
-
Sorry, but that's a horrible idea. Let's say I don't like you for some reason, or you bought something from me and you didn't like it, or vice versa. What's to stop me or you from DoS'ing the other person by repeatedly logging in as them enough times until the lockout function kicks in?
-
zomgwtfbbq is right. I believe this is how "MSN booters" work. Their login protocol had a lockout just like this that was exploited to lock the account out. But it is good you have been thinking about security.
-
You guys are right. That never occurred to me haha. Well that's why we post ideas here first lol.
-
It would be a good idea but people would abuse it on purpose. Especially mad vendors. Imagine giving a vendor 1/5 because they ripped you off or sold you fake stuff only to find out that all of a sudden your account got locked out.