Ask the Expert

Mitigating brute-force password risks

How can you completely prevent brute-force attacks with regards to passwords?

    Requires Free Membership to View

There is no real way to completely prevent brute-force attacks on passwords, but it is possible to mitigate the risk. Choosing suitable passwords and putting in place lockouts that restrict access after x number of failed login attempts will significantly assist in reducing the risk of brute-force attacks. Additionally, you can look at using other forms of authentication, such as two factor, rather than passwords. A number of two-factor authentication systems, like RSA's SecureID token system, are supported on Linux. Other two-factor systems are supported on Linux via PAM or RADIUS.

This was first published in January 2007

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: