Penetration Testing mailing list archives
FTP Authorization Failure time limits
From: msiddhartha () netcom-sys com
Date: 28 Sep 2007 11:14:41 -0000
Hi, When an FTP authorization fails thrice continuously, an error called 530: User not logged in (Your password is being rejected) triggers an alarm in some Enterprise SIM solutions. Can somebody please explain whether there is a time frame for the illegitimate login attempts after which the alarm fires? To elaborate the query, how much time space is allotted after every individual invalid login attempt for an attacker using Brute force by the FTP server? Thanks in advance Cheers! ------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
Current thread:
- FTP Authorization Failure time limits msiddhartha (Sep 28)
- Re: FTP Authorization Failure time limits Jason Barbier (Sep 29)