View Single Post
Old 04-30-2005, 12:08 PM  
raymor
Confirmed User
 
Join Date: Oct 2002
Posts: 3,745
High_Times pointed out that many crackers won't mess with
form logins, which slow them down quite a bit compared
to the pop up gray box. That's a very good point and is one
of the main reasons Strongbox uses such a form. In addition,
Strongbox further discourages people from even attemtping
an attack by using a Turing image, where you have to type the
secret word into the form. Strongbox also places a hard limit
on how many attempts it will process in a given time period
so that to go through a dictionary of 20,000 entries
would take the cracker 3 YEARS. I don't think too many
crackers want to wait 3 years to get a password.
__________________
For historical display only. This information is not current:
support@bettercgi.com ICQ 7208627
Strongbox - The next generation in site security
Throttlebox - The next generation in bandwidth control
Clonebox - Backup and disaster recovery on steroids
raymor is offline   Share thread on Digg Share thread on Twitter Share thread on Reddit Share thread on Facebook Reply With Quote