Is there a package available to pad the login response time for passport/express applications? Currently I'm open to timing attacks because valid user/bad password is one response time and bad user is another response time. I would have thought there was a middleware to handle this, just having a hard time phrasing my search correctly.
Submitted March 21, 2018 at 11:31PM by 64bitHustler
No comments:
Post a Comment