[pubcookie-users] RE: pubcookie-users Digest, Vol 36, Issue 3
caleb racey
Caleb.Racey at newcastle.ac.uk
Fri Apr 15 02:15:12 PDT 2005
Hi folks
Have been asked about monitoring pubcookie to ensure that people aren't
dictionary attacking to try and crack username password stores. Tools
exist to automate webform submission so it is definitely a possibility.
Is anyone doing anything about this at present?
I guess probably the easiest way is to monitor the server logs looking
for grouped failed login attempts. Does anyone have tools that they use
to do this?
I had a look at mod_security (http://www.modsecurity.org/) which while
impressive for preventing other types of attack doesn't seem to cover
dictionary attacks on login services.
Cheers
Cal
########################################
Caleb Racey, Webteam, ISS
University of Newcastle upon Tyne
My mail is aggressively spam filtered.
If you receive no reply. Resend after
removing anything that might look like spam
(e.g use plain text, don't write in ALL CAPS)
########################################
More information about the pubcookie-users
mailing list