Quote:
Originally posted by ckb1985
Well I think the best way to prevent atacks like this is to eductate your staff on how people get their passwords in the first place. I mean instead of making some to function as a fix why not try to prevent password theft in the first place and cut off the problem at the source.
One thing that could be done is making sure staff know about trojans and key loggers and making sure that your staff have a current virus scanner. also maybe making the passwords alittle longer making them harder to brute force (but I dont think thats the problem because they are already alphanumeric and case sensative)
|
You can't prevent absolutely all hacking. There are other ways and methods to reach the same goal. Of course, it would be a good idea to educate staff in such things. When I've given passwords, all I did was create a random set of 8 characters. Of course, since standard accounts can access RC, I no longer have control over the passwords for those accounts.
And to an effect, what Kaimetsu said was partly my fault in that I didn't persist on her setting an IP range. Oh well, live and learn. At least I didn't get all foamy and stuff
