Y
Hacker News
new
|
ask
|
show
|
jobs
by
plextoria
7 days ago
Thanks for your answer! Makes me curious how do you defend against people simply bruteforcing or guessing the account numbers.
1 comments
BrunoBernardino
7 days ago
Rate limiting when it's invalid (and high entropy to generate new ones)! It's in the FAQ :)
link