In <[EMAIL PROTECTED]>, on 01/09/2007
at 08:01 AM, Walt Farrell <[EMAIL PROTECTED]> said:
>Given a system configuration that will lock out (revoke) a user ID if
> someone guesses passwords incorrectly, say after 5 tries, the
>chances of anyone guessing a password before getting the ID revoked
>should be small regardless of password size, rules, etc.
Of course, if his intent is to mount a DOS attack by locking out users
in bulk, that automatic revocation gives him what he wants.
--
Shmuel (Seymour J.) Metz, SysProg and JOAT
ISO position; see <http://patriot.net/~shmuel/resume/brief.html>
We don't care. We don't have to care, we're Congress.
(S877: The Shut up and Eat Your spam act of 2003)
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
