@nixCraft From a terribly misconfigured PAM config 20 years ago I know that at least one brute force script tried the same password twice in a row.