Beefy Boxes and Bandwidth Generously Provided by pair Networks
laziness, impatience, and hubris

Re: Why do you have to worry about Brute Force Attacks?

by RobPayne (Chaplain)
on Sep 27, 2006 at 00:33 UTC ( #575050=note: print w/replies, xml ) Need Help??

in reply to Why do you have to worry about Brute Force Attacks?

There are many factors to take into account when attempting to answer your question.
  • What password change policy do you currently implement? For instance, are users required to set passwords that don't include their name (if you know it), their account name, etc.?
  • What other security measures are you currently implementing? (Are the error logs being regularly reviewed, etc?)
  • Is password security your biggest issue, or do you have other CGI issues? Is anyone other than the developers auditing the code?
  • Are there web server configuration issues that affect the security? (Are databases available via http, for instance?) You may be the only one with the information necessary to answer this question. There are quite likely other folks that you work with who can take a look at the service security. You have to assess the risk of password compromise against the risks of other types of compromise of the server and service.
    • Comment on Re: Why do you have to worry about Brute Force Attacks?
  • Log In?

    What's my password?
    Create A New User
    Node Status?
    node history
    Node Type: note [id://575050]
    and all is quiet...

    How do I use this? | Other CB clients
    Other Users?
    Others contemplating the Monastery: (6)
    As of 2018-01-22 08:51 GMT
    Find Nodes?
      Voting Booth?
      How did you see in the new year?

      Results (233 votes). Check out past polls.