[prev in list] [next in list] [prev in thread] [next in thread]
List: nfr-users
Subject: [nfr-users] Updated Authentication Package from NFR RRT
From: "Mike Barkett" <mbarkett () nfr ! com>
Date: 2003-08-11 20:24:47
[Download RAW message or body]
NFR Security's Rapid Response Team has released Version 7 of the
Authentication package, now with improved password checking and a new
password hiding variable.
OVERVIEW
The Authentication package collects authentication data from multiple
packages to allow the NFR administrator to easily determine if an attacker
is attempting a brute force or other illegal system entry. The package
allows the NFR administrator to query the collected data by username,
passwords, source IP, destination IP, login success or failure,
and service name (i.e. FTP or IMAP ).
WHY THIS IS IMPORTANT
- The NFR administrator now has the option of hiding user passwords for
alerting purposes, while maintaining the ability to record passwords in
clear text. Previously, hiding passwords for alerting and recording was
set by the same variable. This new option gives the NFR administrator
greater flexibility.
- Password checking has been improved for passwords that the NFR
administrator wants hidden but still checked for the appropriate password
strength.
REFERENCES
None.
_______________________________________________
nfr-users mailing list
nfr-users@nfr.com
http://list.nfr.com/mailman/listinfo/nfr-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic