|
|
|
|
|
|
by gaadd33
4463 days ago
|
|
|
How would rate limiting really solve this though? Wouldn't it just result in needing to use a botnet/spend more time harvesting? Assuming that this is still the easiest way to harvest email/name pairs for phishing, then it seems like the time it takes isn't really a factor in the outcome since it can be parallelized and is still easier than phishing alternatives. It seems like the real answer is just to have it return the same response no matter if there is an account or not. |
|
|