Hello everyone,
sorry I am a complete n00b in that regard, but wouldn’t it make Cryptomator even more secure if it had a time-out after an incorrect password has been entered ? So another password-attempt could not be made right away (but only after a set amount of time like 10 seconds or 1 minute).
This way, it would be nearly impossible for a person other than the creator of of the vault to gain access even when attacking it with super-powerful hardware (unless the password is very easy to guess, of course).
If the true owner of a vault just makes a typo, there is no problem in having him wait for a few seconds before he can enter the password again.
Why is this not a good idea ?
This sounds very reasonable to me so there must be a catch, otherwise you would have implemented this already.
Kind regards