Sunday, November 25, 2007

Security: Warning of "Brute Force Attacks"

How can you configure a system to provide a warning of an attempted brute force attack?

1. Enable Windows Firewall on each user's computer.
2. Install a firewall between the company network and the Internet.
3. >>Enable logging of failed login attempts.
4. Require strong passwords.

Explanation : A brute force attack (also called a dictionary attack) is one in which an attacker uses software that tries password combinations until the correct password is found. You can enable logging of failed login attempts to provide yourself with a warning that an attacker is attempting a brute force attack. A large number of failed login attempts indicate that such an attack is underway.

Requiring strong passwords can help prevent a brute force attack from succeeding, but it does not inform you that one is being attempted.

Installing a firewall between the company network and the Internet can help limit access to the company network from the outside, but it cannot give warning of an attempted brute force attack.

Enabling Windows Firewall on each user's computer can help prevent certain types of packets from being accepted by a user's computer and can help prevent various types of attacks. However, it cannot provide you with warning of an attempted brute force attack.
Objective: Security