The sys admin’s daily grind: WebCalendar
BANNING BRUTES
Users log on to services such as SSH, ftp, SASL, POP3, IMAP, Apache htaccess, and many more using their names and passwords. These popular access mechanisms are a potential target for brute-force attacks. An attentive bouncer will keep dictionary attacks at bay.
When users are allowed to choose passwords of their own volition, they often choose something fairly weak, like the name of a friend or pet. This predictable human behavior is something that the bad guys relish.
All an attacker needs to do is set up a loop of login attempts that references a dictionary list of passwords. After all, chances are very slight that the user has set up a password like 4G&dP9a! for the account under attack.
Buy this article as PDF
(incl. VAT)
Buy Linux Magazine
US / Canada
UK / Australia
News
-
Cisco Releases Annual Security Report
Spammers go low-volume, and 90% of IE browsers are unpatched.
-
Zero Day Exploits Target Flash
Adobe scrambles to release patches for vulnerable Flash Player.
-
Intel Unveils Compute Stick
Four-inch-long computer on a stick lets you boot a full Linux system from any HDMI display device.
-
Obama Proposes Personal Data Notification Law
New statute would require companies to report break-ins to consumers.
-
TGXf Project Warns of File Transfer through Screen Pixels
Weird data transfer technique avoids all standard security measures.
-
Industry Giants Announce a Fix for the Password Mess
FIDO alliance declares the beginning of the end for old-style login authentication.
-
Poll: Vote for the Best Open Source Software for Photographers
The Linux New Media Awards have honored the most significant products, projects, people, and organizations for open source/Linux every year since 2000.
-
Debian Gets Forked
Legendary Uber-distro splits over the systemd controversy.
-
Linux Mint Project Releases Mint 17.1
New LTS version offers many refinements for the Cinnamon and Mate desktops and significant improvement under the hood.
-
CeBIT Open Source Forum Call for Papers
One of CeBIT’s most successful forums returns in 2015.