Denied If recaptcha is needed for registered users, can you please only use it once

26-02-2018, 11:50 AM

deanhills Wrote: I've just had a very frustrating experience with trying to log in. Not sure what happened with my password, but then had to reset my password. I can understand your need for security, but why should it be necessary to have repetitive captcha prompts when one has been verified already? Like while I was trying to log in I had to redo that captcha at every consecutive login attempt. it's really very frustrating and i'm not sure what the mileage is for having the same user re-verified consecutive times.

See it like this:

How should we make it unique that you already solved a captcha? By IP?
In that case you could just go ahead, solve a captcha and run a bot trying to brute-force into user accounts