Beefy Boxes and Bandwidth Generously Provided by pair Networks
go ahead... be a heretic

Re: Why do you have to worry about Brute Force Attacks?

by RobPayne (Chaplain)
on Sep 27, 2006 at 00:33 UTC ( #575050=note: print w/ replies, xml ) Need Help??

in reply to Why do you have to worry about Brute Force Attacks?

There are many factors to take into account when attempting to answer your question.

  • What password change policy do you currently implement? For instance, are users required to set passwords that don't include their name (if you know it), their account name, etc.?
  • What other security measures are you currently implementing? (Are the error logs being regularly reviewed, etc?)
  • Is password security your biggest issue, or do you have other CGI issues? Is anyone other than the developers auditing the code?
  • Are there web server configuration issues that affect the security? (Are databases available via http, for instance?) You may be the only one with the information necessary to answer this question. There are quite likely other folks that you work with who can take a look at the service security. You have to assess the risk of password compromise against the risks of other types of compromise of the server and service.

  • Comment on Re: Why do you have to worry about Brute Force Attacks?

    Log In?

    What's my password?
    Create A New User
    Node Status?
    node history
    Node Type: note [id://575050]
    and the web crawler heard nothing...

    How do I use this? | Other CB clients
    Other Users?
    Others lurking in the Monastery: (9)
    As of 2015-12-01 00:48 GMT
    Find Nodes?
      Voting Booth?

      What would be the most significant thing to happen if a rope (or wire) tied the Earth and the Moon together?

      Results (790 votes), past polls