Search Options

Display Count
Sort
Preferred Language
Advanced Search

Results 1 - 10 of 10 for stanleyjobson (0.07 seconds)

The search processing time has exceeded the limit. The displayed results may be partial.

  2. github.com/tiangolo/fastapi

    docs/en/docs/advanced/security/http-basic-auth.md 

    But then the attackers try with username `stanleyjobsox` and password `love123`.

And your application code does something like:

```Python
if "stanleyjobsox" == "stanleyjobson" and "love123" == "swordfish":
    ...
```
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Thu Mar 05 18:13:19 GMT 2026
    - 5K bytes
    - Click Count (0)
  3. github.com/tiangolo/fastapi

    docs/ko/docs/advanced/security/http-basic-auth.md 

    ```Python
if "stanleyjobsox" == "stanleyjobson" and "love123" == "swordfish":
    ...
```

Python은 두 문자열이 같지 않다는 것을 알아차리기 전까지 `stanleyjobsox`와 `stanleyjobson` 양쪽의 `stanleyjobso` 전체를 비교해야 합니다. 그래서 "Incorrect username or password"라고 응답하기까지 추가로 몇 마이크로초가 더 걸릴 것입니다.

#### 응답 시간은 공격자에게 도움이 됩니다 { #the-time-to-answer-helps-the-attackers }

이 시점에서 서버가 "Incorrect username or password" 응답을 보내는 데 몇 마이크로초 더 걸렸다는 것을 알아채면, 공격자들은 _무언가_ 맞았다는 것(초기 몇 글자가 맞았다는 것)을 알게 됩니다.
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Fri Mar 20 14:06:26 GMT 2026
    - 5.9K bytes
    - Click Count (0)
  4. github.com/tiangolo/fastapi

    docs/ja/docs/advanced/security/http-basic-auth.md 

    ```Python
if "johndoe" == "stanleyjobson" and "love123" == "swordfish":
    ...
```

しかし、Python は `johndoe` の最初の `j` と `stanleyjobson` の最初の `s` を比較した時点で、両者の文字列が同じでないと判断してすぐに `False` を返します。つまり「残りの文字を比較して計算資源を無駄にする必要はない」と考えるわけです。そしてアプリケーションは「ユーザー名またはパスワードが正しくありません」と返します。

次に、攻撃者がユーザー名 `stanleyjobsox`、パスワード `love123` で試すとします。

アプリケーションのコードは次のようになります:

```Python
if "stanleyjobsox" == "stanleyjobson" and "love123" == "swordfish":
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Fri Mar 20 14:07:17 GMT 2026
    - 6.4K bytes
    - Click Count (0)
  5. github.com/tiangolo/fastapi

    docs/ru/docs/advanced/security/http-basic-auth.md 

    Затем злоумышленники попробуют имя пользователя `stanleyjobsox` и пароль `love123`.

И ваш код сделает что-то вроде:

```Python
if "stanleyjobsox" == "stanleyjobson" and "love123" == "swordfish":
    ...
```
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Thu Mar 19 17:56:20 GMT 2026
    - 7.4K bytes
    - Click Count (0)
  6. github.com/tiangolo/fastapi

    docs/pt/docs/advanced/security/http-basic-auth.md 

    Então os invasores vão tentar com o usuário `stanleyjobsox` e a senha `love123`.

E a sua aplicação faz algo como:

```Python
if "stanleyjobsox" == "stanleyjobson" and "love123" == "swordfish":
    ...
```
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Thu Mar 19 18:20:43 GMT 2026
    - 5.2K bytes
    - Click Count (0)
  7. github.com/tiangolo/fastapi

    docs/tr/docs/advanced/security/http-basic-auth.md 

    Sonra saldırganlar bu sefer `stanleyjobsox` kullanıcı adı ve `love123` şifresi ile dener.

Uygulama kodunuz da şuna benzer bir şey yapar:

```Python
if "stanleyjobsox" == "stanleyjobson" and "love123" == "swordfish":
    ...
```
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Fri Mar 20 07:53:17 GMT 2026
    - 5.5K bytes
    - Click Count (0)
  8. github.com/tiangolo/fastapi

    docs/es/docs/advanced/security/http-basic-auth.md 

    Pero luego los atacantes prueban con el nombre de usuario `stanleyjobsox` y contraseña `love123`.

Y el código de tu aplicación hace algo así como:

```Python
if "stanleyjobsox" == "stanleyjobson" and "love123" == "swordfish":
    ...
```
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Thu Mar 19 18:15:55 GMT 2026
    - 5.3K bytes
    - Click Count (0)
  9. github.com/tiangolo/fastapi

    docs/uk/docs/advanced/security/http-basic-auth.md 

    А потім зловмисники спробують з ім'ям користувача `stanleyjobsox` і паролем `love123`.

І ваш код застосунку зробить щось на кшталт:

```Python
if "stanleyjobsox" == "stanleyjobson" and "love123" == "swordfish":
    ...
```
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Thu Mar 19 18:27:41 GMT 2026
    - 7.6K bytes
    - Click Count (0)
  10. github.com/tiangolo/fastapi

    docs/de/docs/advanced/security/http-basic-auth.md 

    Doch dann versuchen es die Angreifer mit dem Benutzernamen `stanleyjobsox` und dem Passwort `love123`.

Und Ihr Anwendungscode macht etwa Folgendes:

```Python
if "stanleyjobsox" == "stanleyjobson" and "love123" == "swordfish":
    ...
```
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Thu Mar 19 17:58:09 GMT 2026
    - 6.1K bytes
    - Click Count (0)
  11. github.com/tiangolo/fastapi

    docs/fr/docs/advanced/security/http-basic-auth.md 

    Mais ensuite, les attaquants essaient avec le nom d'utilisateur `stanleyjobsox` et le mot de passe `love123`.

Et le code de votre application fait quelque chose comme :

```Python
if "stanleyjobsox" == "stanleyjobson" and "love123" == "swordfish":
    ...
```
    Created: Sun Apr 05 07:19:11 GMT 2026
    - Last Modified: Thu Mar 19 18:37:13 GMT 2026
    - 5.8K bytes
    - Click Count (0)
Back to Top