I’ve just come out of my weekly briefing with the head of cyber security.
Apparently ezfka.com is now so popular that someone has been persistently trying to log into people’s accounts using a fancy technique called “brute force”. Particularly keen on Stewie’s account, apparently. Wonder why?!
There are a few things that can be done:
- Nothing (easy)
- require accounts to have “strong” passwords (easy but annoying)
- add a ‘capcha’type thing to the login (medium difficulty & $$)
- less forgiving lockout settings (eg get password wrong twice = lock out for 10 hours) (easy, potentially exploitble, deliberately locking out users)
the poll is below – please vote with a “+” for your favoured option.