Nathan_London
asked on
Apache .htaccess - stop password sharing and brute forcing
I have users in website (Apache 1.3.29, Red Hat 9)- using usual .htaccess for password and directory access.
There are lots of scripts out there. I want something to monitor access to the server to stop brute force password hacking and password sharing. Also let me see what user is logged in and where they are looking.
Just want a recommended script really. Any suggestions as there are so many?
N
There are lots of scripts out there. I want something to monitor access to the server to stop brute force password hacking and password sharing. Also let me see what user is logged in and where they are looking.
Just want a recommended script really. Any suggestions as there are so many?
N
> .. let me see what user is logged ..
this is not possible with http.
Depending on your application you only may see who has connected, and probably for which user a session has been initiated.
Gest ist to view apache's access_log and error_log, there're countless log-analyzers out in the web.
this is not possible with http.
Depending on your application you only may see who has connected, and probably for which user a session has been initiated.
Gest ist to view apache's access_log and error_log, there're countless log-analyzers out in the web.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER