11-02-2016, 10:13 AM
|
Banned
|
Join Date: Jul 2004
Location: London
Posts: 2,029
|
|
It sounds as if the forum is making requests to a shared external authentication system, which either needs to filter out requests from the forum or return a correct error message.
There is also apparently no way for a user to turn off this extra authentication step? I know it's been applied to people who've had their account compromised, but a lot of these are accounts which just hadn't changed their password in so many years prior to various leaks. |
|
|