Very Computer

Hi everyone here!

I have a members area installed on my homepage, so that every user has
to type in his username and password. This still works good. I use

AuthName "Members area"
AuthType Basic
AuthUserFile /etc/httpd/passwd

require valid-user

But yesterday somebody tried thousends of passwords for a special
username to get out that password.
Is there any possibility to avoid such attacks?

Is there any option to limit retries for logins? Some examples:
- only 5 login-tries per Minute
- only 3 login-tries from one IP-Adress each day.

Or is there anything similar to this? What can I do to get rid of such
attacks?

Thanks for help!

Bye

no, you could make a program which detects these and addes them to the
blocked ip thing

learn perl
and use cron, crontab

Quote:> Hi everyone here!

> I have a members area installed on my homepage, so that every user has
> to type in his username and password. This still works good. I use

> AuthName "Members area"
> AuthType Basic
> AuthUserFile /etc/httpd/passwd

> require valid-user

> But yesterday somebody tried thousends of passwords for a special
> username to get out that password.
> Is there any possibility to avoid such attacks?

> Is there any option to limit retries for logins? Some examples:
> - only 5 login-tries per Minute
> - only 3 login-tries from one IP-Adress each day.

> Or is there anything similar to this? What can I do to get rid of such
> attacks?

> Thanks for help!

> Bye

Quote:> I have a members area installed on my homepage, so that every user has
> to type in his username and password. This still works good. I use

> AuthName "Members area"
> AuthType Basic
> AuthUserFile /etc/httpd/passwd

> require valid-user

> But yesterday somebody tried thousends of passwords for a special
> username to get out that password.
> Is there any possibility to avoid such attacks?

> Is there any option to limit retries for logins? Some examples:
> - only 5 login-tries per Minute
> - only 3 login-tries from one IP-Adress each day.

> Or is there anything similar to this? What can I do to get rid of such
> attacks?

I'm guessing this is Apache.  There may be a specific Apache solution
but you can also use mod_pam for authentication which brings you the
full power of PAM.

--
     \\   ( )
  .  _\\__[oo

 .  l___\\
  # ll  l\\
 ###LL  LL\\