[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-security] URGENT Hacking

Subject: RE: [cobalt-security] URGENT Hacking
From: "Webmaster" <webmaster@xxxxxxxxxx>
Date: Sun, 3 Sep 2000 16:43:05 -0400

This is just a guess.... But if they used brute force, then your user's
account that got broken into had a password that was probably something very
common like "car".

Brute force attack is used when there is no additional information of
password and attacker simply tries all possible passwords - one-characters,
two-characters etc. To resist this attack you should  encourage long
mixed-characters password and should have long password setup that
significantly decreases brute force speed.

Maybe instead of having "car" as the password have something like "car!",
"car89", "1car", etc.

Also I don't see brute force as a security related issue on a RAQ.

But then again I am just taking a guess at all this. If I am wrong in any of
this please let me know.
 -

                         Barnabas Toth
                         barnabas@xxxxxxxxxxxxxxxxxxxxx
                         http://www.maximum-threshold.com
                         ICQ UIN: 293732

"you know the day destroys the night. night divides the day. try to run. try
to hide."

> -----Original Message-----
>
> UPDATE...
>
> Its appears bruteforce was used to gain access, what can be done?
> I believe
> we have all the updates on our RaQ, help please!
>
> Regards,
>
> Mark Baker
> Dark Marketing Ltd
> http://www.yoursitehere.co.uk

Follow-Ups:
- Re: [cobalt-security] URGENT Hacking
  - From: Mark Baker - Cobalt Lists

References:
- Re: [cobalt-security] URGENT Hacking
  - From: Mark Baker - Cobalt Lists

Prev by Date: Re: [cobalt-security] URGENT Hacking
Next by Date: Re: [cobalt-security] URGENT Hacking
Previous by thread: Re: [cobalt-security] URGENT Hacking
Next by thread: Re: [cobalt-security] URGENT Hacking

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index