|
|
|
|
|
|
by dizhn
987 days ago
|
|
|
The idea is you don't have to block those since there is no attack surface. I look at the imap login attempts on my server sometimes. The passwords they try are usually pathetic. Nothing close to the 15+ character actual passwords we have in use. |
|
|
I disagree with this, 404 queries still use resources and someone trying URLs in a matter of seconds should be blocked nonetheless.