DEV Community

Discussion on: Safer web: why does brute-force protection of login endpoints so important?

Collapse
 
lepinekong profile image
lepinekong

Hi Roman,

I was searching for express-brute and saw this security issue about concurrency github.com/AdamPflug/express-brute...

Is your package different?

Thanks.

Collapse
 
animir profile image
Roman Voloboev

Hi lepinekong,

rate-limiter-flexible built on top of atomic increments (express-brute doesn't).
You can find a lot of brute force protection examples on Wiki.

There is also ExpressBruteFlexible. It has exactly the same set of functions as express-brute, but built on top of atomic increments.

Hope, this helps.

Collapse
 
lepinekong profile image
lepinekong

Thanks :)