Jump to content
jimfog

throttling login atempts

Recommended Posts

Tell me if I got this right cause I am little confused...

There are 2 cases when throttling must be applied to a form...when an attacker performs an attack(dictionary attack,brute force etc) to a single account.

In the above case throttling must be activated in this specific account

AND when there is distributed brute force attack at which case throttling must be activated to ALL of the accounts.

Am I correct?

Share this post


Link to post
Share on other sites

I have been playing with something like that. I am thinking that ip addresses and usernames can be added to a timeout table. Each session can also have an "ignore" flag. Each new session gets looked up to see if the username or ip-address is in the timeout table. If it is found in the table then the "ignore" flag is set.

Share this post


Link to post
Share on other sites

This was a timely inquiry.  Throttling is a concept that I should seriously consider.  Thanks!

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...

×
×
  • Create New...