[Snort-users] Password DoS

Treu, Jill Jill.Treu at ...2308...
Mon Jun 18 10:10:47 EDT 2001


Has anyone had any success in writing a Snort rule which could detect a
password denial of service attack on a directory. For example:  A password
is set to lock out after X number of logon attemps. Evil person determines
logon IDs and forces all accounts to be locked-out (DoS).
Any thoughts on protecting against this?

Thanks.

Jill




More information about the Snort-users mailing list