Home » Security

Avoiding Brute-Force Password Cracking

February 5th, 2010 | xumi | 0 Comments »

Question:

I am not a security expert and I have what may be a naive question. If hackers routinely use brute-force password-cracking scripts to guess thousands of login PWs per minute, isn’t mitigating this a simple matter of changing settings in the OS so that each failed PW attempt incurs a 3-second time-out period before the next attempt can be made?

Solution:

depending on what kind of system you are working on you can logout a account after so many times.
But keep in mind that you alwas have system account that have to work or your machine wont function.

Password cracking is not only for a normal user account, but also for buildin account’s like administrators and system account. giving them a 3 second delay means that you will have to wait 3 seconds, if you do this in a compay network and every user have to wait 3 seconds everytime he or she does something that uses a password will have to waint than.

So yes your idea is good, but not in a big enviroment or when time out’s could mean system interuption.

digg

delicious

stumbleupon

technorati

Google

live

Sphinn

Mixx

newsvine

reddit

yahoomyweb

2 Stars

3 Stars

4 Stars

5 Stars

(No Ratings Yet)

Loading ...

This post was written by:

xumi - who has written 24612 posts on it.rss24h.com.

Email This Author | xumi's RSS

Comments (0)

There are no comments for this post.

Trackbacks - Pingbacks (0)

There are no trackbacks for this post.

Leave a Reply

Recent Posts
- monitoring network traffic in/out of Juniper firewall
  Question: I have a Juniper SSG5 and Juniper 5GT,...
- Ftp linux login issue
  Question: Hi All, I created a linux ftp server and...
- A potentially dangerous Request.QueryString value was detected from the client
  Question: I am getting this error A potentially dangerous Request.QueryString...
- Could this cause a deadlock
  Question: Hi, Just playing around with Threads and I’m curious,...
- Tests to perform for a Domain Controller
  Question: Hi guys hope you are all well and...
- how to use Oracle Streams to share data between two DB servers
  Question: Hi experts, here is scenario Environment: Oracle 10g 10.2, Windows we...
- mysql exlude row on LEFT OUTER JOIN
  Question: Trying to exclude the row where A.sku=B.ordersku when...
- how to use defualt sorting in SQl Server 2005 View (without ORDER BY clause )
  Question: Hi I want to sort the data according to...
- Form validation
  Question: Hi! I am working on a Customer Database...
- I get runtime error while running the ASP.NET application?
  Question: Hi Experts, I have attached the screen shots of...
- sql date range
  Question: Is it possible to use sql (in Oracle10g...
- ORA-12154: TNS could not resolve the connect identifier Oracle – 10g Client.
  Question: Hi Experts, I reinstalled Oracle 10g client (with admin...
- How to init program after boot in Mandriva ?
  Question: Hi. I am trying to init zoiper (sip graphical...
- Windows Server 2008 Service Pack 2 Code 8024200D, Install Fails
  Question: I’m trying to install Service Pack 2 on...
- calculate 2×2 DFT
  Question: how can i calculate the 2×2 DFT and...
- Flash Actionscript 3: Formatting warnings and nested package error on .as file
  Question: I have created an .as file that search...
- How to make changes to a running application in ASP.NET?
  Question: Hi Experts, I am supporting an ASP.NET 1.1 application,...
- Checking if a GUI exists from a thread.
  Question: Hello, I have the code below, I am getting...
- Why is there NO BEEP CODES no matter what I do???
  Question: Hi Experts, I am not a beginner but on...
- Automate the creation of PDF’s for document distribution
  Question: I am wondering if it is possible to...
Random Posts
- Oracle 10g changing welsh characters in UTF8?
  Question: Oracle 10.2.0.2.0 Firefox 1+ / IE 6+ Win 2k3...
- How to get data in a cell on datagrid..
  Question: I have a script that populates a...
- Offline device status on CA Brightstor ArcServe Backup
  Question: Dear all, We are running sony sdx-900v tape unit...
- Microsoft Office SharePoint Server 2007 Disaster Recovery
  Question: HI, We are currently using Sharepoint Services 3.0 running...
- New Hard Drive installation
  Question: Hello Experts, I have a Brand new Maxtor 250GB...
Recent Comments
- Pol53 | 10-10-2009
  Links to stuff we talked about:Apologies again for problems with
- Lyagushkka | 10-09-2009
  Who knows where to download XRumer 5.0 Palladium? Help, please.
- kamilopoland | 28-08-2009
  Hello to all ! Greetings From Poland ! Very nice
- Web 2.0 | 27-07-2009
  Players with an old version of the client application can
- KonstantinMiller | 07-07-2009
  Hello. I think the article is really interesting. I am