Focus on Linux
Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: Detecting Brute-Force and Dictionary attacks
Nov 09 2006 06:45PM
fabio (ctrlaltca libero it)
The idea is simple and good, but there's a problem in its
implementation: usually modern systems doesn't compare the password you
write with the saved password; instead, they compare an hash of your
password attempt with the saved hash of your current password. By
design, two similar string have str...
[ more ]
Copyright 2010, SecurityFocus