if there is a way to limit how many times a person can guess a password in a 24 hour period, please put it in place! most of us might mess up our password once or twice, but then we can send it to ourselves. there's no need for unlimited tries or more than say, 5. it limits how many times you can send a password to yourself, so please limit how many times we can guess our own password. if i'm locked out by my own stupidity i'd rather be locked out than have any of my journals at risk of being hacked.
Agreed. If I put the wrong password in a couple of times I just have my information sent to me. I also like when you have to confirm part of your email address before it will send it, usually in the form of a radio button list of three options, and then all of them are mostly asterisked out so that you have to actually know your email to pick the right one.
For instance, if my email was acoolname@gmail.com it would say a*******e@gmail.com; I know what my email name is and I know how many characters in it, so picking it out of a list to confirm sending the password email is pretty easy, but someone who doesn't own the account would have a harder time picking.
Most sites that limit login attempts to 3-5 will usually put a hold on further attempts for the next 1-3 hours, and honestly the few times I've just completely forgotten a password and that's happened to me I was fine with having to wait to try again with the right password.
For instance, if my email was acoolname@gmail.com it would say a*******e@gmail.com; I know what my email name is and I know how many characters in it, so picking it out of a list to confirm sending the password email is pretty easy, but someone who doesn't own the account would have a harder time picking.
Most sites that limit login attempts to 3-5 will usually put a hold on further attempts for the next 1-3 hours, and honestly the few times I've just completely forgotten a password and that's happened to me I was fine with having to wait to try again with the right password.