R
Ralph Trickey
Guest
I'm getting daily password reset code requests, one a day.
Is it possible that someone is sending out requests to multiple addresses and typing in random numbers hoping for a match? Even if the chance is one in 10 million, if they are sending out 10 million requests a day, that makes a match easy enough to do.
Is there any way to find out which IP is generating those requests to block it, to increase the digits I have to type in for a password request, or any other safeguards I can put in place?
Or is this a non-issue because of other protections MS has in place?
Ralph
More...
Is it possible that someone is sending out requests to multiple addresses and typing in random numbers hoping for a match? Even if the chance is one in 10 million, if they are sending out 10 million requests a day, that makes a match easy enough to do.
Is there any way to find out which IP is generating those requests to block it, to increase the digits I have to type in for a password request, or any other safeguards I can put in place?
Or is this a non-issue because of other protections MS has in place?
Ralph
More...