this post was submitted on 22 Sep 2025
358 points (97.4% liked)

Memes

12468 readers
1408 users here now

Post memes here.

A meme is an idea, behavior, or style that spreads by means of imitation from person to person within a culture and often carries symbolic meaning representing a particular phenomenon or theme.

An Internet meme or meme, is a cultural item that is spread via the Internet, often through social media platforms. The name is by the concept of memes proposed by Richard Dawkins in 1972. Internet memes can take various forms, such as images, videos, GIFs, and various other viral sensations.

Laittakaa meemejä tänne.

founded 3 years ago
MODERATORS
QuentinCallaghan@sopuli.xyz
seahorse@midwest.social
graphito@sopuli.xyz
358
The inner fire of my hatred COULD melt steam beams (infosec.pub)
submitted 1 week ago by Stamets@lemmy.dbzer0.com to c/memes@sopuli.xyz
29 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] Thorry@feddit.org 9 points 1 week ago (2 children)

That's because you've been rate limited trying passwords for an hour. When an attacker is randomly trying incorrect passwords, even the correct password will be rejected. Otherwise the protection wouldn't be very useful.

[–] kibiz0r@midwest.social 6 points 1 week ago

Had a convo with someone a while back:

Bug report: “The ‘reset password’ form doesn’t show an error if you try to reset an account that doesn’t exist.”

Me: “That would be a security risk. Closed.”

Them: “What? How? You have to click the link in the email before it does anything.”

Me: “Try putting in a bogus email on the login screen. See how it says ‘wrong email/password combination’, and not ‘no such account’? If we tell the user whether we recognize a given email, we’re basically providing attackers a list of users they can try passwords for.”

[–] SoaringDE@feddit.org 1 points 1 week ago

But then there would be no harm in just stating the rate limit :(