Jeff Atwood on limited login attempts: Dictionary Hacks 101

January 24, 2009

Jeff Atwood over at his blog, Coding Horror, gives a little lesson in the reasons why websites should limit their number of login attempts. He uses the recent hacking of Twitter as an example.

“Clearly, the last thing you want to do is give attackers carte blanche to run unlimited login attempts. All it takes is one user with a weak password to provide attackers a toehold in your system. In Twitter’s case, the attackers really hit the jackpot: the user with the weakest password happened to be a member of the Twitter administrative staff.”

Two lessons learned here: websites should limit their login attempts and users should have more secure passwords!

This entry was posted in Web and tagged Coding Horror, hacks, Jeff Atwood, passwords, security, Twitter. Bookmark the permalink. Post a comment or leave a trackback: Trackback URL.

Post a Comment

Your email is never published nor shared. Required fields are marked *

Name *

Email *

Website

Comment

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Find me!
Search
Archives
Categories
- Adobe
- Android
- apple
- art
- Beer
- Books
- Business
- cars
- celebrities
- Cloud Computing
- coding
- Communication
- computing
- Cool
- design
- development
- devinsblog
- Events
- gadgets
- games
- Google
- hack
- hardware
- ideas
- IM
- innovation
- interesting
- iPad
- iPhone
- LoD
- Math
- microsoft
- mobile
- movie
- Multitouch
- Music
- nature
- news
- notebooks
- Personal
- photography
- programs
- quickie
- review
- rumor
- silverlight
- Software
- speakers
- Surface
- technology
- Tips
- Tips & Tricks
- TV
- Twitter
- Uncategorized
- Useless
- Utilities
- UX
- video
- Web
- Windows
- WPF
- Xbox
- Zune

Jeff Atwood on limited login attempts: Dictionary Hacks 101

Post a Comment

Find me!

Search

Archives

Categories