|
hacked password sites.
webmasters/webmistresses, if you could put an annual dollar amount on the loss of resources to hacked password sites, what would it be? i have heard that they may not actually a large threat? your opinions?
|
IMO, they aren't that big of a problem.
|
if your password protection is good
you can make a fortune off of a few hacked passwords so there really not a loss there more of a gain all those surfers being redirected to the front end of the site :) |
i can hardly imagine that those surfers that visit password-sites (the cheapest of the cheapest of the cheapest freeloaders out there) will EVER open their wallet AT ALL...
so in that way it'll still only be extra cost (bandwidth) |
Quote:
|
Shared passwords may work for getting new members sometimes but hacked passwords are very different and will make you lose money.
Hacked passwords are passwords that are stolen from your site via a brute Force attack. A Brute Force attack is when someone hits your site with thousands of usernames and passwords in the hopes of getting "lucky". Often they use a list of common passwords or whole password files stolen from someones pay site. Remember most people use the same username and password over and over again, so getting "lucky" is not that hard. If someone steals a password from your site they are stealing a password from a valid paying customer, a customer that rebills every month. When you have to delete that password your blocking your paying customers access. Think about it..........we all work so very hard to keep our rebilling customers happy why would you risk pissing that customer off by deleting his password? The people who share passwords are not going to be rebilling anyways but the guy that is stealing valid, happy, paying customers passwords is costing you money. You may not even know how much money your losing. I have not even touched on the issue of increase server loads from the bonehead hackers that hit you hard and fast with a Brute Force Attacks. Solution.......we are finishing a Unix/Linux program that blocks brute force attacks, even when those attacks are coming from multi proxy servers. Stay tuned to www.noabusesoftware.com Nothing there yet but coming soon! |
Quote:
|
Quote:
:BangBang: cheaters |
Quote:
|
Quote:
1. Drop the route to them... They can 'syn' all they want but they'll never get an 'ack'. 2. Start sending http 200 responses instead of the standard 401. |
We just shoot them off to 4free sponsors.
|
Quote:
http://www.rawtocash.net/cgi-bin/signup.cgi?ref=11051 |
Quote:
LOL |
Quote:
(Not second page hit tracking) |
couldnt someone just make a program that blocks proxy servers from logging in? if they're using their isp you could just call them and tell the isp what they're doing it theres a good chance the isp will cancel their account. or better yet, take some of the proxy addresses, contact the admin of the proxy server and explain the situation and im sure the proxy server admin will be more than happy to give you their ip address, then call the isp. once these guys report other guys getting busted for this, they may think twice before they try and hack your site.
|
Quote:
|
Quote:
You are the man Spacedog! |
Quote:
|
baaaaaaawwwwaaaahhaahahhahaaahaahaaaaaaa :1orglaugh
|
Spacedog's my hero.
|
use an htaccess file to redirect hacked password traffic to one of the join 4 free programs that are out there. bandwidth costs are not an issue and it might even make you a few bucks.
|
..
|
hell yeah guys thanks. sorry i haven't been near a computer for couple hours to check this post again. i know it sounds like a newbie question and admitidaly it is :winkwink: so i appreciate the response.
|
| All times are GMT -7. The time now is 02:25 AM. |
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123