Y
Hacker News
new
|
ask
|
show
|
jobs
by
1718627440
91 days ago
> There's no reason for it
The reason is to add a delay when bruteforcing passwords.
2 comments
hananova
91 days ago
Bruteforcing is only really done with the password hashes in hand. Attacks on live systems are done with credential stuffing.
link
timhh
90 days ago
Definitely not for local password authentication, and I'm dubious it helps for ssh either. See my other comment.
link