passwords for failed login attempts (fwd)

MegaZone (megazone@livingston.com)
Thu, 20 Jun 1996 17:06:36 -0700 (PDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: MegaZone: "routing a subnet (fwd)"
Previous message: MegaZone: "packets that violate the packet filter on the PMT (fwd)"
Next in thread: John W. Temples: "Re: passwords for failed login attempts (fwd)"

Once upon a time Bala Guthy shaped the electrons to say...
> Does anyone have a hack/patch to capture the password of all
>the users with failed logins. At present radius log contains the
>username but not the password of the attempt that failed. IT will be
>help ful in tracking hacking attempts.

Not that I am aware of - and we wouldn't add something like this because
logging passwords is adding another security risk. I don't see how it
would help - why do you feel knowing the passwords tried would help find
a hacker? What more does it give you than a log of the failed attempts?

-MZ

--
Livingston Enterprises - Chair, Department of Interstitial Affairs
Phone: 800-458-9966 510-426-0770 FAX: 510-426-8951 megazone@livingston.com
For support requests: support@livingston.com  <http://www.livingston.com/> 
Snail mail: 6920 Koll Center Parkway  #220, Pleasanton, CA 94566

Next message: MegaZone: "routing a subnet (fwd)"
Previous message: MegaZone: "packets that violate the packet filter on the PMT (fwd)"
Next in thread: John W. Temples: "Re: passwords for failed login attempts (fwd)"