Results 1 to 6 of 6
Like Tree8Likes
  • 4 Post By gugi
  • 2 Post By Utopian
  • 2 Post By gugi

Thread: Account hack?

Threaded View

  1. 07-01-2015, 02:17 AM #4
    gugi
    gugi is offline
    The original Skolor and Gentileman. gugi's Avatar
    Join Date
    Aug 2007
    Posts
    17,430
    Thanked: 3919
    Blog Entries
    1

    Default

    For as long as we use screen names, which are publicly available, plus password for authentication there is no way to prevent brute force attacks like these where the attackers are essentially trying to guess the password on the account.

    As security measure we block them after five unsuccessful attempts and send notification to the email on the account. Most forums and other sites would either not detect such attempts or not notify the account holder, but in my opinion that only decreases their security at the expense of keeping their members in the dark.
    For example, the attackers are targeting accounts that have not been used for a while, clearly hoping to remain undetected, so our notifications are doing exactly what they are trying to avoid.

    As long as you use a moderately secure password (i.e. not on the lists of the most commonly used passwords or your screen name) there should be no problem.
    Reply With Quote Reply With Quote

  2. The Following 3 Users Say Thank You to gugi For This Useful Post:

    coachmike (07-01-2015), rolodave (07-01-2015), sharptonn (07-01-2015)
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules