Re: Detecting Brute-Force and Dictionary attacks
- From: "Sebastiaan Veenstra" <sebastiaan.veenstra@xxxxxxxxx>
- Date: Wed, 8 Nov 2006 18:22:12 +0100
Hi,
I didn't read the whole discussion about this issue but I came up with
an idea which might be usefull to detect brute force attempt. By
storing the passwords a certain user has used in the past along with
the current password you could be able to compare to password (by
pattern matching) used at the login attempts with the passwords list.
If the password used differs significantly (this excludes typos) from
the entries in the password list, there could be a possible brute
force attempt. The reason for storing the previous passwords is that
people tend to use every password they've used in the past when they
forgot their password. Maybe this idea can be used along with the
other methods of detecting brute force attempts. Anyway, it's just a
random thought.
Greets,
Sebastiaan
- Follow-Ups:
- Re: Detecting Brute-Force and Dictionary attacks
- From: Cy Schubert
- Re: Detecting Brute-Force and Dictionary attacks
- From: fabio
- Re: Detecting Brute-Force and Dictionary attacks
- Prev by Date: RE: Vulnerability Assessment of a EAL 4 system
- Next by Date: Re: Detecting Brute-Force and Dictionary attacks
- Previous by thread: Vulnerability Assessment of a EAL 4 system
- Next by thread: Re: Detecting Brute-Force and Dictionary attacks
- Index(es):
Relevant Pages
|
|
