Re: User to get locked after three wrong login attempts.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 09/05/2018 05:14 PM, Craig James wrote:
[snip]
To elaborate, you should explain to the auditor that this introduces a huge denial-of-service vulnerability into your system. Anyone can start hammering on everyone else's accounts, and with a fairly trivial script, lock the entire company out of all accounts. This is a terrible idea.

And be tracked down (relatively) quickly.

--
Angular momentum makes the world go 'round.
[Index of Archives]     [KVM ARM]     [KVM ia64]     [KVM ppc]     [Virtualization Tools]     [Spice Development]     [Libvirt]     [Libvirt Users]     [Linux USB Devel]     [Linux Audio Users]     [Yosemite Questions]     [Linux Kernel]     [Linux SCSI]     [XFree86]

  Powered by Linux