Problem description:

When sharing a file or folder with a password, there's currently no rate limiting – anyone can keep guessing the password without any delay.

Proposed solution:

I’d suggest two improvements:

1. Introduce a delay or cooldown after a few failed password attempts (e.g. 10–30 seconds after 3 wrong tries, or temporary lockout after repeated failures).

2. Send a notification (email or in-app) to the file owner when there are multiple failed access attempts. This would help users detect suspicious activity early.

These changes would greatly improve the security of password-protected shared content.

Thanks!