Quote:
Originally posted by AnnihilaT
That could be bruteforced just as well. The best thing (and what i do) is to install software that monitors the incoming http requests and if too many requests are made in $x amount of seconds then the ip gets firewalled out. The other thing is to monitor your access logs and have software that watches for simultaneous access from different IP's with the same username and then kills that account or notifies you by email or mobile text message.
Also most account bruteforcing software isnt able to work with forms so stop using http authentication and switch to a cgi based form authentication.
|
how could they get the authentication code with brute force if its generated every time and its in a picture so they cant really read it? right now they use different proxies to crack the password so banning the ip wont help. and when they do crack the password, they give the people the proxy to use on it so everyone who uses it has the same ip address. you would be better off monitoring bandwidth on the account.