[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: RFC: changes to default password strength checks in pam_unix

On Sep 3, Lars Wirzenius wrote:

ti, 2007-09-04 kello 10:17 +0900, Miles Bader kirjoitti:

If the system is excessively anal about what passwords it will let you
use, people will just start writing them down...

That is arguably better than having passwords which can be guessed by
doing brute-force attackes over ssh.

I stop brute force attacks by sending auth log messages to a FIFO which I read with a perl script. After 10 login failures, your IP is firewalled for 24 hours.

Works great.

Reply to: