• @cheese_greater
      link
      34 months ago

      I wonder if its mostly for simple PIN-passcode types…

      Think about it: if they have some bullshit way to disable the anti-replay whatever, its only a matter of time till you iterate to the correct numerical passcode.

      Its like Michael said to Jim and Dwight, its not about more or less money, the amount is just different

      • @[email protected]
        link
        fedilink
        64 months ago

        From what’s known most of the attack vectors involve brute forcing the passcode and the vulnerabilities allow it without rate limiting/anti-replay.

        So you’re at least much better off with a long alphanumeric passphrase.