Jump to content
evernote-fan

DashLane Security Test

Recommended Posts

Hello, 

Anybody knowing why Evernote does not pass the brute force test in the DashLane test? 

https://blog.dashlane.com/dashlane-password-power-rankings-2017/

They say:

"Does the website allow 10 incorrect login attempts without providing additional security (CAPTCHA, account lockout, 2-Factor, etc.)?" 

 

@Evernote: Is there a special reason or are there any plans for implementing this? 

 

 

Share this post


Link to post
3 minutes ago, evernote-fan said:

Anybody knowing why Evernote does not pass the brute force test in the DashLane test? 

I think the headings on the chart provide an explanation

Evernote only passed in the 2-Factor column

 

FA159D6C-E563-4926-BA57-551D9DFF0FF5.thumb.jpeg.898426d5bc70c3dddf86ba88a6e81ee8.jpeg

  • Like 1

Share this post


Link to post

Yes. I do not mind the three first aspects as everybody can chose a safe password either. 

But the brute force attack thing should really be considered by EN!

But on the other hand, Google is not better and they have one of the best security engineers in the world. 

  • Like 1

Share this post


Link to post

evernote-fan 
Thanks for posting the link. What a slap in Evernote's face! 

If I was Evernote, I would work on this immediately. It hurts simply from a public relations standpoint.

I'm disappointed to see Evernote ranked so poorly, especially considering their slogan.

  • "Evernote® is a platform for human memory, designed to help individuals remember everything™."

I wonder how many hackers are using this Password Power Ranking as a guide to focus on the "sites that failed to implement the most basic security requirements".

  • Like 1

Share this post


Link to post

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×
×
  • Create New...