[6201] in Kerberos
K4 Protections against password attacks?
daemon@ATHENA.MIT.EDU (Mike Friedman)
Thu Nov 9 23:41:43 1995
To: kerberos@MIT.EDU
Date: 10 Nov 1995 04:04:47 GMT
From: mikef@ack.berkeley.edu (Mike Friedman)
We're running Cygnus K4. We'd like a way for the KDC to (try to) detect
password-guessing attacks. In particular: large numbers of TGT requests
at very short intervals for the same principal and from the same host.
(Even better, using a set of configurable rules to decide whether suspicious
activity is occurring).
Has anyone out there added such functionality to the K4 server?
Also, what about the KDC enforcing password standards (also configurable)?
I'd just like some suggestions, other than having a program running that
monitors the logs (which could get tricky since a given set of requests
could be spread among our master and slave servers).
Thanks.
------------------------------------------------------------------------
Mike Friedman mikef@ack.Berkeley.EDU
Data Communication & Network Services +1-510-642-1410
University of California at Berkeley http://www.Berkeley.EDU/~mikef
------------------------------------------------------------------------
