|
|
Focus on Linux
Re: Detecting Brute-Force and Dictionary attacks Nov 08 2006 05:22PM Sebastiaan Veenstra (sebastiaan veenstra gmail com) (2 replies) Re: Detecting Brute-Force and Dictionary attacks Nov 10 2006 01:43PM Cy Schubert (Cy Schubert spqr komquats com) |
|
Privacy Statement |
implementation: usually modern systems doesn't compare the password you
write with the saved password; instead, they compare an hash of your
password attempt with the saved hash of your current password. By
design, two similar string have strongly different hashes. So you can't
compare two hashes and say if they correspond to two similar words.
Greets,
Fabio
Sebastiaan Veenstra wrote:
> Hi,
>
> I didn't read the whole discussion about this issue but I came up with
> an idea which might be usefull to detect brute force attempt. By
> storing the passwords a certain user has used in the past along with
> the current password you could be able to compare to password (by
> pattern matching) used at the login attempts with the passwords list.
> If the password used differs significantly (this excludes typos) from
> the entries in the password list, there could be a possible brute
> force attempt. The reason for storing the previous passwords is that
> people tend to use every password they've used in the past when they
> forgot their password. Maybe this idea can be used along with the
> other methods of detecting brute force attempts. Anyway, it's just a
> random thought.
>
> Greets,
>
> Sebastiaan
>
[ reply ]