wild
New Yoshi
n_n
Posts: 77
|
Post by wild on Sept 18, 2004 23:52:13 GMT -5
Uhh... didn't we already see how vulnerable IPB is? I don't trust proprietary software for server applications, mainly because they have far more security holes. phpbb is open source, and so it should be much more secure. Plus I can modify it without worrying about legal issues ;D Ok I guess the board is fine as it is. I just wanted to know what you all thought. Thanks for the feedback. I know GIGANTIC boards that use IPB. I've never seen them down, so how 'bad' is it? |
|
|
|
Post by Soul on Sept 19, 2004 1:48:46 GMT -5
Geez, come on... Do you only believe in what you see? Meaning, if you haven't seen something, then it doesn't exist?? That's ridiculous...
Which tells us IPB is vulnerable to brute-force cracking. Preventing this is as simple as rewriting the board's code to only accept a limited amount of log-in attempts per second, per account. Brute-force cracking typically needs thousands to millions of log-in attempts to get the password.
|
|
|
|
Post by PinkFloydYoshi on Sept 21, 2004 7:50:56 GMT -5
Actually, IPB give's you that choice in the AdminCP based on time it wait's per attempted login, per account. It also uses flood control which I have set to a rather painful 400 second's .
I Didn't set it at the time as I didn't think this fool would go and do that...
...And I know him too...
|
|
