Prevent brute force attempts on your members section
 

http://www.cafecounterintelligence.c...p?articleid=23

This security script (PHP), should prevent any connections to your pages from any brute force programs. Also helps prevent flooding/DOS attacks, and other such things.

I'm sure that nothing is a perfect defence, but have a look at it, you may find it useful. I do suggest you have someone who knows about PHP to install this script, there are functions you may want to disable.

So will this one...

http://www.paysitepowertools.com/os-memlogin.html

The CCI one, is free.

Can you fix the url, it's not working. Thanks.

Done, I think it chewed it up when I hit the preview button...

Not much info there on it... will it protect against real-world bruteforce attacks? Ie large proxy based bruteforce attacks?

Theres a lot of scripts/modules out there that say they prevent brute force attacks -- and they do, so long as the attack is using the same ip, or using the same proxy more than a few times to scan passwords.

Ours is more a "wtf is going on here?!" bruteforce deterrant :thumbsup

It'll prevent all bruteforce attempts if used properly.

I used an old version of this script, and it worked. It's a 14k zip file to download, how about reading the text files included, it has information in it. I didn't write the script.

I wouldn't trust free programms that much...
It doesn't meen that expencive solutions always are that money worth but security leaks could be too expencive to just fuck about... I would better write it inside the company (if you have good programmers) or hire some to provide you with consulting at least.

stopthathacker ::cough:: my design...

their site can be reached at: www.stopthathacker.com :)