honeypot
How can I throttle user login attempts in PHP
You cannot simply prevent DoS attacks by chaining throttling down to a single IP or username. You can’t even really prevent rapid-fire login attempts using this method. Why? Because the attack can span multiple IPs and user accounts for the sake of bypassing your throttling attempts. I have seen posted elsewhere that ideally you should … Read more
Better Honeypot Implementation (Form Anti-Spam)
Concept By adding a invisible field to your forms that only spambots can see, you can trick them into revealing that they are spambots and not actual end-users. HTML <input type=”checkbox” name=”contact_me_by_fax_only” value=”1″ style=”display:none !important” tabindex=”-1″ autocomplete=”off”> Here we have a simple checkbox that: Is hidden with CSS. Has an obscure but obviously fake name. … Read more