Quote:
Originally Posted by fris
accessdiver thats how most of the password sites get them.
|
Quote:
Originally Posted by fris
ya strongbox is a good solution, people that sitll use pennywize should be shot in the head or any htaccess method.
|
Wow, you live in the 90's. Accessdiver rofl. "htaccess method" wtf rofl. Yea, it mattered is it "htaccess" or "form" when you were in 90s using accessdiver. Get with the program. Strongbox is horrible, so is pennywize.
Quote:
Originally Posted by MasterM
accessdiver , goldeneye . and the better ones use : HAS , for £HAS_Command
 |
Rofla@goldeneye, that's even worse then accessdiver.
Has is not a bruteforcer, shouldn't pretend something you aren't with explot naming tools.
Quote:
Originally Posted by d-null
you are wrong again
I am my own management, and I personally looked at the logs of the 24 hour a day attempts on brute forcing the passwords, and I also personally banned the ips of the proxies they were using (they were using a lot). Anyways, they easily have enough proxies for that if the site admin doesn't bother to notice that they are doing it.
|
I'm not wrong. I fear for your "management" if that is what you banned.
a) They dont have infinite proxies. Actually they have them very little lately (compared to 90s when certain people last read "how to crack" tutors)
b) they dont run bots all day long because that's stupid for a number of reasons i already pointed out.
And just the notion you have to "personally ban ips they were using" means you dont have ip check for a number of tries on your login. Which in turn means they dont have to use proxies and can brute from 1 ip until you personally ban it again. They're smart enough to notice you're not banning proxies automatically and would not waste them in vain against such poor protection.