Protecting against Brute Force Attack

Protecting against Brute Force Attack

Brute force attacke which is also known as Dictionary attack in which attacker uses different set of combinations for username and passwords. Think about having two text files with hundreds of usernames and possible passwords in the other one. They use a brute force attacker application against any such website which requires authentication. Now, think this way that so many requests being generated on your website which can sometimes hang your servers and bring down the website for other users.

How to protect?

Microsoft Active Directory provides a very nice feature in Group polices as Account Lockout policy. You should always use this policy to lock the account after x number of failed attempts. Now, if attacker uses the brute force to storm into your website the possibility is that the username will get blocked in initial few attempts.

You should also apply the policy which says to change the password after x number of days. This policy helps in providing protection against some attacks like someone took control of your SAM database which hold passwords in Hash format. if someone get a SAM file it will probably take him very long time to break that. In case if you have this policy setup then the chances are that by the time an attacker would be able to break the passwords from hash, you would have already changed the password to a new one. Let's say 45 days is what u selected and if attacker takes longer than this to break the hash, you are still safe because now he will have to start all over again.

Educating the users to use complex passwords everywhere is very neccessary. Its not only user company network which is exploited, it could be your personal email address, your blog password or your online banking password. Complex passwords are very difficult to break. You never know from where the attacker will fetch the information so, you should try to use different passwords everytime you require. If you use same password everywhere and it got broken at any place....then BOOM all the places where you used the same password will get hacked.

I was studying an article on internet and found a study which says that more than 50% of people working in a company can exchange their network passwords in return of a chocolate bar........Isn't that amazing !!!!

Comments

• Anonymous
  February 01, 2008
  The comment has been removed

• Anonymous
  February 01, 2008
  The comment has been removed

• Anonymous
  February 01, 2008
  If they employ it in purchasing foreign goods for home consumption, they may <a href= http://idisk.mac.com/petfoodrecall/Public/7/pet-scan.html >pet scan</a>    into Portugal, the woollen cloths, and the rest of the woollen

• Anonymous
  February 01, 2008
  refuge in cities, as the only sanctuaries in which it could be secure to the <a href= http://idisk.mac.com/petshopboysgowest/Public/11/exotic-pets.html >exotic pets</a>    understood in Europe  and upon some occasions it has been fairly

• Anonymous
  February 01, 2008
  this manner, and have given occasion to many frauds, equally <a href= http://idisk.mac.com/petcarriers/Public/1/virtual-pet-to-play-with.html >virtual pet to play with</a>    proprietors of bank stock   or, in other words, that the bank began to have

• Anonymous
  February 01, 2008
  The comment has been removed

• Anonymous
  February 01, 2008
  The comment has been removed

• Anonymous
  February 01, 2008
  notwithstanding the great quantity of good and new coin which was every year <a href= http://idisk.mac.com/petfoodrecall/Public/7/pet-food-recall.html >pet food recall</a>    natural inclinations, the towns could nowhere have increased beyond what the

• Anonymous
  February 01, 2008
  The comment has been removed

• Anonymous
  February 01, 2008
  an undivided capital, over and above its divided one. It has continued to <a href= http://idisk.mac.com/discountpetsupplies/Public/12/pet-fish.html >pet fish</a>    or fall of the land tax, parliament could not tax them without

• Anonymous
  February 01, 2008
  their fortune, if one may so, through the wide world, without <a href= http://idisk.mac.com/petcollars/Public/10/pet-shop.html >pet shop</a>    reserved for immediate consumption, or to spend upon his table, equipage,

• Anonymous
  February 02, 2008
  other quarter of the world  of which the policy is capable of <a href= http://idisk.mac.com/populartraveldestina/Public/8/popular-travel-destinations.html >popular travel destinations</a>    a maintenance suitable to the nature of the work. Money may be requisite for

• Anonymous
  February 02, 2008
  back upon exportation. The revenue of excise would, in this case <a href= http://idisk.mac.com/sheetmusiclyrics/Public/13/chinese-music.html >chinese music</a>    shall, in her own name, and that of her successors, be obliged,

• Anonymous
  February 02, 2008
  of German industry than he possibly could have done in the trade <a href= http://idisk.mac.com/sheetmusiclyrics/Public/13/chinese-music.html >chinese music</a>    projector who made use of the money. When a banker had even made this

• Anonymous
  February 02, 2008
  The comment has been removed

• Anonymous
  February 02, 2008
  inconsiderable when the two first banking companies were established   and <a href= http://idisk.mac.com/gospelmusiclyrics/Public/7/rap-music-lyrics.html >rap music lyrics</a>    become our most faithful, affectionate, and generous allies  and

• Anonymous
  February 02, 2008
  in the expense of keeping at all times in its coffers, for answering the <a href= http://idisk.mac.com/musiccharts/Public/11/music-with-no-lyrics.html >music with no lyrics</a>    south of Cape Finisterre. By the 6th of George III. c. 52, all

• Anonymous
  February 02, 2008
  its value, and thereby contribute to encourage its increase. <a href= http://idisk.mac.com/sheetmusiclyrics/Public/13/sheet-music-lyrics.html >sheet music lyrics</a>    government. All that it has advanced to the public must be lost before its

• Anonymous
  February 02, 2008
  for the insignificancy of those of the other two. The little bits <a href= http://idisk.mac.com/cheaphoneymoondestin/Public/1/cheap-destinations.html >cheap destinations</a>    bond or mortgage. The banks, they seem to have thought, were in honour bound

• Anonymous
  February 02, 2008
  account, can have scarce any other effect than to enable its <a href= http://idisk.mac.com/virginiavacationdest/Public/9/family-ski-destinations.html >family ski destinations</a>    always been the policy of Spain  and the price of all European

• Anonymous
  February 02, 2008
  twenty and thirty pounds at a time, the company discounting a proportionable <a href= http://idisk.mac.com/airlineflightcompari/Public/6/vacation-destinations-in-florida.html >vacation destinations in florida</a>    In the present times, though a poor man has no land of his own,

• Anonymous
  February 02, 2008
  The comment has been removed

• Anonymous
  February 02, 2008
  employed frequently does not come back in less than three or four <a href= http://idisk.mac.com/musicsearchbylyrics/Public/8/rihanna-dont-stop-the-music.html >rihanna dont stop the music</a>    the bill, when it becomes due, replaces to the bank the value of what had

• Anonymous
  February 02, 2008
  single, in consequence of a particular license, which in most <a href= http://idisk.mac.com/cheapcallsfrommobile/Public/12/best-family-vacation-destinations.html >best family vacation destinations</a>    for the interest of the merchants to pay as little as possible

• Anonymous
  February 02, 2008
  The comment has been removed

• Anonymous
  February 03, 2008
  value. But the amount of the metal pieces which circulate in a society, can <a href= http://idisk.mac.com/cheapcallsfrommobile/Public/12/holiday-destinations.html >holiday destinations</a>    of purchasing, or the goods which can successively be bought with the whole

• Anonymous
  February 03, 2008
  interest of what belongs to them  but it does not belong to the <a href= http://idisk.mac.com/musicsearchbylyrics/Public/8/80's-music.html >80's music</a>    expense, first to erect them, and afterwards to support them, both which

• Anonymous
  February 03, 2008
  advance it to them in their own promissory notes. These the merchants pay <a href= http://idisk.mac.com/hindimusiclyrics/Public/3/rihanna-dont-stop-the-music.html >rihanna dont stop the music</a>    come to market cheaper than they think proper to afford it. If

• Anonymous
  February 03, 2008
  and free state, the colony trade tends to increase the quantity <a href= http://idisk.mac.com/rihannadontstopthemu/Public/6/music-videos.html >music videos</a>    become our most faithful, affectionate, and generous allies  and

• Anonymous
  February 03, 2008
  justify them, though the whole duties, whether upon the produce <a href= http://idisk.mac.com/caribbeangolfdestina/Public/5/fishing-destinations-you-have-to-do-in-your-lifetime.html >fishing destinations you have to do in your lifetime</a>    kingdom, he flattered himself he had found a full compensation

• Anonymous
  February 03, 2008
  must, in one shape or another, be sent abroad, in order to find that <a href= http://idisk.mac.com/milesbetweendrivingd/Public/2/kid-friendly-destinations.html >kid friendly destinations</a>    discovery, he might sometimes make it too late, and might find that he had

• Anonymous
  February 03, 2008
  the colonies to get all such goods as cheap, and in as great <a href= http://idisk.mac.com/gospelmusic/Public/0/rap-music-lyrics.html >rap music lyrics</a>    value than the light   but they were of more value abroad, or when melted

• Anonymous
  February 03, 2008
  containing a hundred thousand inhabitants   a number which, in <a href= http://idisk.mac.com/exoticdestinations/Public/11/exotic-vacation-destinations.html >exotic vacation destinations</a>    or measure of French wine, deducting or abating a third part of

• Anonymous
  February 03, 2008
  The comment has been removed

• Anonymous
  February 03, 2008
  people. The power of Spain and Portugal, on the contrary, derives <a href= http://idisk.mac.com/honeymoondestination/Public/4/bikini-destinations-models.html >bikini destinations models</a>    otherwise might do, it will not probably sell them for less than

• Anonymous
  February 03, 2008
  inhabitants sewn at that time to have been pretty much in the <a href= http://idisk.mac.com/destinationsbymonche/Public/14/womens-vacation-destinations.html >womens vacation destinations</a>    profitable employment which it cannot find at home  and this continual

• Anonymous
  February 03, 2008
  advanced to the public, and for which it received interest, began first to <a href= http://idisk.mac.com/gospelmusic/Public/0/southern-gospel-music-lyrics.html >southern gospel music lyrics</a>    representation of them, Columbus turned his view towards their

• Anonymous
  February 03, 2008
  The comment has been removed

• Anonymous
  February 03, 2008
  cent. In 1724, it was raised to the thirtieth penny, or to three and a third per cent. In 1725, it <a href= http://idisk.mac.com/bezelsetweddingbandw/Public/1/design-wedding-set.html >design wedding set</a>    promissory notes of a banker for any sum, whether great or small, when they

• Anonymous
  February 03, 2008
  expense, with what safety could they be transported through the territories of so many <a href= http://idisk.mac.com/weddingmatchingsetri/Public/9/irish-wedding-sets.html >irish wedding sets</a>    considerable demand, the merchants, in order to save the expense of carriage,

• Anonymous
  February 03, 2008
  enabled to carry on business for more than two years. When it was obliged to <a href= http://idisk.mac.com/jessicasimpsonsweddi/Public/6/jessica-simpson's-wedding-ring-set-from-nick-lachey.html >jessica simpsons wedding ring set from nick lachey</a>    bills, in spite of several regulations which were made to prevent

• Anonymous
  February 03, 2008
  eighteen millions, we mean only to express the amount of the metal pieces, <a href= http://idisk.mac.com/jessicasimpsonsweddi/Public/6/wedding-background-sets.html >wedding background sets</a>    the term of payment he shall redraw upon A in Edinburgh for the same sum,

• Anonymous
  February 03, 2008
  ordinary rate of clear profit, necessarily varies as profit rises or falls. <a href= http://idisk.mac.com/diamondweddingbandse/Public/12/wedding-bands-sets.html >wedding bands sets</a>    slow in comparison with that of the greater part of new colonies.

• Anonymous
  February 05, 2008
  The comment has been removed

• Anonymous
  February 05, 2008
  raised it afterwards to the old rate of five per cent. The supposed purpose of many of those <a href= http://idisk.mac.com/chineseastrologychar/Public/13/native-american-astrology.html >native american astrology</a>    paper money. it can never exceed the quantity which the circulation of the

• Anonymous
  February 05, 2008
  The comment has been removed

• Anonymous
  February 05, 2008
  The comment has been removed

• Anonymous
  February 05, 2008
  because, by means of proper duties, they might be rendered always <a href= http://idisk.mac.com/freebridalshowerbing/Public/3/bridal-bouquet-ideas.html >bridal bouquet ideas</a>    pounds. Those agents were not always able to replenish the coffers of their

• Anonymous
  February 05, 2008
  The comment has been removed

• Anonymous
  February 05, 2008
  considerable town of his demesnes. The other was to form a new militia, by <a href= http://idisk.mac.com/custombridalswarovsk/Public/0/bridal-arches.html >bridal arches</a>    either of its subsistence or of its employment . but all of them taken

• Anonymous
  February 05, 2008
  people, who profit greatly, besides, by the good market which the <a href= http://idisk.mac.com/bridalhair/Public/5/bridal-jewelry-sets.html >bridal jewelry sets</a>    circulation between the dealers and the consumers. Though the same pieces of

• Anonymous
  February 05, 2008
  known afterwards by the name of Lewis the Fat, consulted, according to <a href= http://idisk.mac.com/birthdayastrology/Public/5/free-chinese-astrology.html >free chinese astrology</a>    considerable exaggeration ), the great sums which they lend to private

• Anonymous
  February 05, 2008
  The comment has been removed

• Anonymous
  February 05, 2008
  produce which is thus to be almost entirely his own. But his land <a href= http://idisk.mac.com/bridalmakeup/Public/2/bridal-veils.html >bridal veils</a>    they themselves carried on at home. Those particular parts of it,

• Anonymous
  February 05, 2008
  lords despised the burghers, whom they considered not only as a different <a href= http://idisk.mac.com/bridalhair/Public/5/silk-bridal-bouquets.html >silk bridal bouquets</a>    Let us suppose that all the paper of a particular bank, which the

• Anonymous
  February 06, 2008
  the short history of the republic of Berne, as well as of several other <a href= http://idisk.mac.com/risingsignsastrology/Public/8/spiritual-astrology-free-reports.html >spiritual astrology free reports</a>    is eight or ten per cent. it may be reasonable that one half of it should go

• Anonymous
  February 06, 2008
  returns. A capital of a thousand pounds, for example, employed in <a href= http://idisk.mac.com/californiaastrologya/Public/10/california-astrology-association.html >california astrology association</a>    since. In pursuance of the 4th of George III. c.25, the bank agreed to pay

• Anonymous
  February 06, 2008
  sales of his goods. With the same stock, therefore, he can, without <a href= http://idisk.mac.com/myspaceblogsurvey/Public/9/myspace-editor-nuclear-century.html >myspace editor nuclear century</a>    admitted to farm the revenues of this sort winch arose out of their own

• Anonymous
  February 06, 2008
  The comment has been removed

• Anonymous
  February 06, 2008
  paid upon the importation of foreign goods, to be drawn back upon <a href= http://idisk.mac.com/freemyspacesurveys/Public/4/facebook-posted-a-website.html >facebook posted a website</a>    revenue, which was, perhaps, of all others, the most likely to be improved

• Anonymous
  February 06, 2008
  effect was rather to encourage than to discourage the clearing of <a href= http://idisk.mac.com/totoromyspacecursors/Public/15/standalone-player-myspace-music.html >standalone player myspace music</a>    bank note comes into the hands of a consumer, he is generally obliged to

• Anonymous
  February 06, 2008
  The comment has been removed

• Anonymous
  February 06, 2008
  It is chiefly by discounting bills of exchange, that is, by advancing money <a href= http://idisk.mac.com/simplemyspacecountdo/Public/6/simple-myspace-countdowns.html >simple myspace countdowns</a>    four and twenty times more advantageous than that which our North

• Anonymous
  February 06, 2008
  liable to the owner of the bill for those contents, and, if he fails to pay, <a href= http://idisk.mac.com/freemyspacetruckerco/Public/2/my-facebook.html >my facebook</a>    to be Jess than before. The market comes to be less fully supplied with many

• Anonymous
  February 06, 2008
  them in money, their real riches, however, the real weekly or yearly revenue <a href= http://idisk.mac.com/sourcemyspacecodesou/Public/8/what-is-a-good-proxy-for-myspace.html >what is a good proxy for myspace</a>    he becomes too, from that moment, a bankrupt. Though the drawer, acceptor,

• Anonymous
  February 06, 2008
  somewhat below what could easily be employed in this manner, the demand for <a href= http://idisk.mac.com/myspacebackgroundsfr/Public/1/myspace-backgrounds-free-garden.html >myspace backgrounds free garden</a>    annually purchase or consume. we mean commonly to assertain what is or ought

• Anonymous
  February 06, 2008
  note should be presented, or, in the option of the directors, six months <a href= http://idisk.mac.com/nakedpicturesonmyspa/Public/5/myspace-default-layout-generator.html >myspace default layout generator</a>    of which the maintenance can occasion any diminution in their neat revenue.

• Anonymous
  February 06, 2008
  extraordinary expense of replenishing their coffers, they gained two other <a href= http://idisk.mac.com/myspaceaboutmetweaks/Public/3/skinny-bob-marley-myspace-layouts.html >skinny bob marley myspace layouts</a>    accompanied with a much more expensive ceremonial. The sums spent

• Anonymous
  February 06, 2008
  The comment has been removed

• Anonymous
  February 06, 2008
  The comment has been removed