shared link password
Currently there is an opportunity for Shared Links with a password to be brute force broken, as there are not any controls in place to disable after unsuccessful attempts. Two options to handle this are:
- Implement the configuration in the Shared Link Password protection option to set the number of unsuccessful attempts
- Implement an audit event that documents an unsuccessful Shared Link Password attempt, so that a custom implementation can monitor the unsuccessful attempts, and react accordingly.
21
votes
![](https://secure.gravatar.com/avatar/0a430142ccd72053866c8ffd4d456ae6?size=40&default=https%3A%2F%2Fassets.uvcdn.com%2Fpkg%2Fadmin%2Ficons%2Fuser_70-6bcf9e08938533adb9bac95c3e487cb2a6d4a32f890ca6fdc82e3072e0ea0368.png)
We'll be evaluating improvements to Shared Links later this year and will provide an update at that time.