Is this a new feature or something? I keep getting it everytime I log-on and I have to fill in either a captcha, or a stupid question, which is really getting irritating. (The captchas always fail for me.) Shouldn't this only happen after failing to log-in several times?
I just logged back out and then back in and had to to the verification. I'm going to presume it is a crackdown on spammers and such. I don't blame Seph. Just stay logged in and you should be alright.
its to prevent people trying to brute force passwords. Sorry but you're going to have to put up with it. Should just be questions though.
Why would anyone try to brute force their way into somebody's romu account? And why don't you implement this feature for people who fail to log-in more than three times or whatever? God damn, Seph, step it up.
no idea why people would try to bruteforce other people's passwords, but they do. it's an SMF mod that's either on or off, there's no setting for only on failed password entry.
Because they only try to login twice anyway. The way SMF is created makes it a severer annoyance when someone tries to login as you this is really the best option. Use the damn remember me feature if it's such a huge issue.
Isn't there a better mod for this? Sounds pretty half-assed to me. "What sound does a dog make?" ?!?! "How do you spell "Seph"?" ?!?! These are fucking stupid, and certainly wouldn't stop somebody who's intent on bruteforcing their way in. All they'd have to do is implement something that recognises text, and answers depending upon which text it reads. Wait, what? What do you mean they only try to login twice? That's not bruteforcing, that's guessing somebody's password. And what do you mean it makes a severe annoyance when somebody fails to log-in? Am I misreading something here or what?
Which they aren't going to. Our problem is not people targeting RomUlation specifically but people targeting SMF software which is also the reason we don't have the security on the main site. The choice was either between this or a captcha, I figure this takes less time. It invalidates their session which means if they're currently making a post then they get the session timeout error and have to resubmit it.
