Preventing Brute Force Attacks
Faramir
faramir.cl at gmail.com
Tue Apr 19 14:40:15 CEST 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
El 19-04-2011 6:35, Mike Acker escribió:
> On 04/19/2011 04:13, gnupg-users-request at gnupg.org wrote:
>> GnuPG Users <gnupg-users at gnupg.org>
>>
>
> (1) apply the Strike 3, you're out rule. any password gate should apply
> this rule: if the requester does not know the password and submits
> repeated bad answers DISABLE ACCESS. Game over.
...
> why is it we are always fussing over theoretical stuff instead of doing
> basic stuff that would help us?
Maybe because, since this is the support list for GnuPG, we are all
thinking more about how to protect an encrypted file than about how to
protect a server account.
Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iQEcBAEBCAAGBQJNrYKuAAoJEMV4f6PvczxAoDoH/3RUWpZBjPGH/npB/vIBF2rh
JSsa4OLqLSQH6kPO0nYowE8a5KF1xzi7owTD/uAc9iBW1nMxW+Cs8UIZufDSAqXx
LbLB+QoA0JPxtBA+3WpatWfGRpe84tvoE6StydEJkwpvlzEdiM79M+4gwYkKksBE
mQGcUgsn1YWqz8Xr856KEtPAQR+MgdMErdtA3agKo9bxRt+FcXeWnqEZ0gPJNUsh
NPoGrZxcMEGU1UvthTPurXn8Kdyc8X80qx6v85YcCOJT++Vzt2nd1I6o03jeAAKw
X1JXG8bHuiZUGAirzarIkaBUTUBYR0ui+8ddxZq2OGSoIf0DPcoWr9M7GbHFXRU=
=C93q
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list