Firewall Wizards mailing list archives

Re: Passwords

From: Don Helms <dhelms () sw org>
Date: Wed, 13 Oct 1999 12:19:08 -0500

------------------------
  From: Rick Smith <rick_smith () securecomputing com>
  Subject: Re: Passwords
  Date: Thu, 7 Oct 1999 11:02:24 -0500

You can find tools to detect "hackable" passwords, that is, passwords that
can be recovered through dictionary attacks or other large scale guessing.
But your intuition is otherwise correct: you can't analyze a password and
somehow tell if someone has "hacked (i.e. recovered) that particular
password for that particular account.

---------------End of Original Message-----------------

However, you can track the activity on a given account and see if the patterns
change.  For example, the guy that logs in to one app every moorning, does his
work and goes home.  If suddenly that user is running this app, that app and 
poking round at random, his password might have been compromised.  Also keep 
an eye on time of day for new and unusual activity.  

There are apps that will track log files, etc and look at the patterns of usage.

-Don


--------------------------------------------------------
Don Helms  
Scott & White Hospital
dhelms () sw org
Date: 10/13/1999

All opinions are just that...
--------------------------------------------------------

Current thread:

Passwords Rex Murphy (Oct 06)
- Re: Passwords Rick Smith (Oct 12)
  - Re: Passwords Don Helms (Oct 16)
  - Message not available
    - Re: Passwords Rick Smith (Oct 16)
- <Possible follow-ups>
- RE: Passwords sean . kelly (Oct 12)
  - RE: Passwords Siglite (Oct 16)
  - RE: Passwords Peter J. Kunz (Oct 16)
- RE: Passwords LeGrow, Matt (Oct 18)
- RE: Passwords Doty, Ted (ISSAtlanta) (Oct 18)
- Re: Passwords Vin McLellan (Oct 18)