[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: auditing failed login attempts

To: "'Michael Ströder'" <michael@stroeder.com>, <openldap-technical@openldap.org>
Subject: RE: auditing failed login attempts
From: "Paul B. Henson" <henson@acm.org>
Date: Wed, 18 Sep 2013 14:42:25 -0700
Content-language: en-us
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:from:to:references:in-reply-to:subject:date:message-id :mime-version:content-type:content-transfer-encoding:thread-index :content-language; bh=uzhNj7OrGtxYJOr6or/tEtbu9o3DWAuMk8NnY8z1+fw=; b=hKg9ulkoWFsAoR6eR5bPNNqnroBQa0o71QX3W64iWPnhN/XhEhnJjvDYa+n0xo5uyi KK6w1cGD9fTqBEMbdudIjS55sWtP6h1m0ttkxVE20xsIkrzVmqZH9FjPY2ih+3ACnkd4 2bH3ZbmQhhWntH4LjcVkiPDcFxN2Z/yYcDGu9uAa7Qqhn0ArBpF+ICr0lWFEaL0NJVqh 4ULpSQb1pOEm3glOGEUPMB0TZXhCjVbF7dIkv4uz9zeKXy4pOaUmmePuzwzq8HYlzwPm JnmUVtalZgHdpzbnC+7umBuTV8DU9Iw9qZuXZL/gAlhAcRgI89cMX/o8bc/uBioq7wPE Ajvg==
In-reply-to: <5239F845.1020009@stroeder.com>
References: <e9bb01ceb405$a2031430$e6093c90$@acm.org> <9D549F3111619BC29287C89C@[192.168.1.22]> <eab201ceb49b$a46e0f90$ed4a2eb0$@acm.org> <5239F845.1020009@stroeder.com>
Thread-index: AQE7ZxUYtWAOQsexVEMs4Q4d+V20FAKIRNdCAa72quUBoy7RdprDzeUQ

> From: Michael Ströder [mailto:michael@stroeder.com]
>
> Paul B. Henson wrote:
> > our security group is pushing us to enable failed login lockout
> 
> ..which will stupidly open a DoS attack vector...

Preaching to the choir on that one, my friend. I already promised our ISO
that the day we turn it on there are going to start to be random
authentication failures on his account originating from untraceable web
proxies around the world to the point where he'll never be able to actually
login ;). I just work here?

References:
- auditing failed login attempts
  - From: "Paul B. Henson" <henson@acm.org>
- Re: auditing failed login attempts
  - From: Quanah Gibson-Mount <quanah@zimbra.com>
- RE: auditing failed login attempts
  - From: "Paul B. Henson" <henson@acm.org>
- Re: auditing failed login attempts
  - From: Michael Ströder <michael@stroeder.com>

Prev by Date: Re: Kudos to all who contributed to MDB
Next by Date: PFS Ciphers
Index(es):
- Chronological
- Thread