Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

FTP Authorization Failure time limits

From: msiddhartha () netcom-sys com
Date: 28 Sep 2007 11:14:41 -0000
Hi,
When an FTP authorization fails thrice continuously, an error called 530: User not logged in (Your password is being 
rejected) triggers an alarm in some Enterprise SIM solutions. 

Can somebody please explain whether there is a time frame for the illegitimate login attempts after which the alarm 
fires? 
To elaborate the query, how much time space is allotted after every individual invalid login attempt for an attacker 
using Brute force by the FTP server? 

Thanks in advance

Cheers!

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: