Bug 385610

Summary: Lockscreen: don't time block password entry - only login attempts.
Product: [Unmaintained] kscreenlocker Reporter: Pascal d'Hermilly <pascal>
Component: greeterAssignee: Plasma Bugs List <plasma-bugs-null>
Status: RESOLVED INTENTIONAL    
Severity: wishlist CC: bshah, mgraesslin
Priority: NOR    
Version First Reported In: unspecified   
Target Milestone: ---   
Platform: Other   
OS: Linux   
Latest Commit: Version Fixed/Implemented In:
Sentry Crash Report:

Description Pascal d'Hermilly 2017-10-11 15:31:31 UTC 
If I mistype my password on the lock screen I have to wait ca. 3-5 seconds to reenter it.
I could have spent the time to reenter the password. 
It should in my opinion only time block the login attempts.
Comment 1 Martin Flöser 2017-10-11 16:29:26 UTC 
This is just another case of the old: security vs. comfort.

The password field is disabled for increased security to make it more annoying to brute force the password.
Comment 2 Pascal d'Hermilly 2017-10-11 22:11:00 UTC 
Right. But could it wait with the annoying part until after 3 failed attempts?
3 attempts isn't exactly "brute force".
Comment 3 Martin Flöser 2017-10-12 15:26:40 UTC 
(In reply to Pascal d'Hermilly from comment #2)
> Right. But could it wait with the annoying part until after 3 failed
> attempts?
> 3 attempts isn't exactly "brute force".

Erm no, that's just too complicated to track and get right. This is security related code, better safe than sorry.
Comment 4 Pascal d'Hermilly 2017-10-12 18:48:08 UTC 
ok.
Thanks for listening :-)