About Me
Well, I'm back from vacation, so it's probably a good idea to post some stuff! Luckily I've got a backlog of interesting links to farm. :)
Last month, Nintendo announced that one of its sites (Nintendo Club of Japan) had been compromised by a brute force login attack. The attackers made 15,000,000 authentication attempts, and successfully took control of 24,000 accounts.
The attack would have failed if Nintendo had implemented login throttling.
Fail2Ban is a Python-based utility that hooks directly into the system's firewall to ban malicious IP addresses, and I'm going to show a few easy steps to make your site safer by blacklisting brute-force attackers. If you maintain a web application that doesn't have built-in authentication throttling, this might be the how-to you're looking for - alternatively, this would work as an additional way to punish pesky rogue connections.
It's that time again! I've been gathering links from far and wide (translation: twitter and my collection of RSS feeds), and I've chosen a few interesting ones to show you.
Recently, I read an article called Making Virtual Teams Work: Ten Basic Principles. It was all about ways to improve team communication, but the 7th Principle gave me an idea for marketing my wtBoard project.