Quote:
Originally Posted by qasdfdsaq
Yes, after one or two failed logins it makes sense, to prevent automated attacks as well as intentional DoS. But not after a successful login... Unless it's some cheap alternative to 2-factor authentication?
|
I've never seen it
after a login, I've seen other systems like those that send an email with a link or a code - that would be 2FA, but I don't think a CAPTCHA fulfils the "something you have" aspect? Unless you "have" eyeballs :P.