Get Paid to Participate - up to $1 per post!     Twitter     Facebook     Google+
Hosting Discussion
 

Hosting Discussion > Web Hosting Forums > Web Hosting Discussion > What is a brute force attack?
forgot password?



Reply


Old
  Post #16 (permalink)   12-15-2017, 11:42 AM
HD Addict
 
Join Date: Nov 2008
Location: Central Indiana, USA
Posts: 237
Send a message via AIM to MikeDVB Send a message via MSN to MikeDVB Send a message via Skype™ to MikeDVB

Status: MikeDVB is offline
Quote:
Originally Posted by alpshost1 View Post
Brute force is simply a method by cracking the personal information such as password or we can say it decoding of encrypted data.
You can decode encrypted data by brute forcing it - but decoding encrypted data is not necessarily brute forcing.
__________________
Michael Denney - MDDHosting LLC (Established 2007)
NEW Managed Shared Cloud Hosting Plans with cPanel!
1000% Uptime Guarantee SiteLock Lite + SSL Included
Highly Available Distributed Self-Healing
 
 
 


Old
  Post #17 (permalink)   12-16-2017, 05:22 PM
HD Community Advisor
 
ughosting's Avatar
 
Join Date: Jan 2011
Location: London
Posts: 679

Status: ughosting is offline
Of course, there are many ways to defend against such tactics.
Wordpress blogs are often brute-forced.

But you can deploy mod_sec to stop this.
LiteSpeed has a built-in mechanism in the latest version to stop this.
BitNinja also stops this in its tracks.
CloudLinux Immunity 360 would also stop this.

We have other algorithms that spot this stuff and block users,

Of course, the WAFs stop many brute force attacks, not just WordPress.
__________________
UnixGuru High Performance, Low Contention, Litespeed Hosting
Elastic Sites (HIgh Powered Hosting Accounts) with 1 to 20 CPU Cores, 4 to 42GB of RAM. (Power of a VPS with the ease of Shared Hosting)
PHP and Node.JS on Shared, Reseller, & VPS hosting
 
 
 
The Following User Says Thank You to ughosting For This Useful Post:
Artashes (12-16-2017)


Old
  Post #18 (permalink)   12-19-2017, 01:05 AM
HD Newbie
 
Join Date: Nov 2017
Posts: 5

Status: stephon is offline
Brute force attack is a way to gain user personal login creadential by continuously guessing the credenials to get genuine information.
 
 
 


Old
  Post #19 (permalink)   01-25-2018, 12:19 PM
HD Amateur
 
Join Date: Jan 2018
Location: India
Posts: 96
Send a message via Skype™ to webconfigure

Status: webconfigure is offline
Brute force attack the ability to guess the passwords of your accounts. There are number of tools which used to guess the passwords of your accounts.

For preventing from the brute force attack, you should not share your passwords with anybody using unauthorised medium. You should have the proper security setup to all your essential files, directories and databases.
 
 
 


Old
  Post #20 (permalink)   02-13-2018, 07:54 AM
HD Wizard
 
easyhostmedia's Avatar
 
Join Date: Mar 2011
Location: Northumberland, UK
Posts: 5,426
Send a message via MSN to easyhostmedia

Status: easyhostmedia is offline
Quote:
Originally Posted by HarryAzhar View Post
A brute force attack is a trial-and-error method used to obtain information such as a user password or personal identification number (PIN). In a brute force attack, automated software is used to generate a large number of consecutive guesses as to the value of the desired data.
Not really. If you have brute force enabled on your server and you make an error in your login for the server then you can be locked out as a brute force attack
__________________
Terry Robertson - CEO The Easyhost Media Group
PowerSSL - - We Secure your World
The Scamlist Forum - Fighting against scammers
 
 
 


Old
  Post #21 (permalink)   02-13-2018, 10:17 AM
HD Management Staff
 
Artashes's Avatar
 
Join Date: Apr 2003
Posts: 10,004

Status: Artashes is offline
Quote:
Originally Posted by easyhostmedia View Post
Not really.
You have just said that to Techopedia (original source I suspect), where the user copied his answer from, which has been since re-posted by numerous other companies and sources.

https://www.techopedia.com/definitio...e-force-attack

The member has been suspended for plagiarism.
 
 
 


Old
  Post #22 (permalink)   02-13-2018, 10:54 AM
HD Wizard
 
easyhostmedia's Avatar
 
Join Date: Mar 2011
Location: Northumberland, UK
Posts: 5,426
Send a message via MSN to easyhostmedia

Status: easyhostmedia is offline
Quote:
Originally Posted by Artashes View Post
You have just said that to Techopedia (original source I suspect), where the user copied his answer from, which has been since re-posted by numerous other companies and sources.

https://www.techopedia.com/definitio...e-force-attack

The member has been suspended for plagiarism.
but like wikipedia the info is just added my members, so can be wrong.
__________________
Terry Robertson - CEO The Easyhost Media Group
PowerSSL - - We Secure your World
The Scamlist Forum - Fighting against scammers
 
 
 


Old
  Post #23 (permalink)   08-01-2018, 06:39 AM
HD Newbie
 
Join Date: Apr 2018
Posts: 30

Status: Hostfinch is offline
Brute Force Attack is the method of guessing username and passwords anything that is password protected with an automated software or program. It tries various combinations of usernames and passwords again and again.

How to prevent it:
1. Password Length : Password length should be 8-16 characters.
2. Password Complexity: Password should be combination of Alphanumeric. (Capital letters, small letters, Numbers, Special characters, Ascii characters)
3. Limit Login Attempts: In admin panel set maximum If your website receives five failed login attempts; it should block that IP for a certain period of time to stop further attempts being made.
4. Changing Password: Passwords must be changed frequently (every month).
 
 
 


Old
  Post #24 (permalink)   08-01-2018, 11:42 PM
HD Amateur
 
Join Date: Sep 2006
Location: Nashik
Posts: 91
Send a message via AIM to hostechsupport Send a message via MSN to hostechsupport Send a message via Yahoo to hostechsupport Send a message via Skype™ to hostechsupport

Status: hostechsupport is offline
Usually bruteforce attack is handled by tool like Fail2ban or CSF (ConfigServer Firewall), these configurable tools can scan your logs and when they find too many errors resulting from denied login, they can ban the bruteforcing IP. As Loonycgb2 said, it is important to know on where the bruteforce is targetted, on which service (HTTP, SSH, FTP, etc.)
__________________
HostechSupport
24x7 Live chat | Matchless Tech Support
Server Management | Web Design & Development | Mobile Apps
 
 
 


Old
  Post #25 (permalink)   08-08-2018, 03:13 PM
HD Newbie
 
Join Date: Mar 2018
Posts: 29

Status: AlphaNine_vini is offline
Denial of services caused by a attacker or group of attackers. They hit your server with multiple ips jamming all the resources on your server or network. Sometimes they even use virus to brute force.
 
 
 
Reply
Previous Thread Next Thread


Thread Tools

New Post New Post   Old Post Old Post
Posting Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Sponsored By: