Common password attack mode
1, social engineering
2, brute force
3, weak password scanning
4, password monitor
Password-related defensive measures
1, for social engineering, password protection can only alert people
2, the password for the listener, by [ communications] encryption
3, scanning for weak passwords, by [ configure security policy allows users to set password security to prevent weak passwords ], increase the difficulty of guessing the password, such as: set the minimum password length, combinations
4, against brute force, you can [set] password lockout policy
5, for user passwords stored in the database server you can [encryption] and access to the database to ensure the secure password storage
Password associated test point
1, the maximum password age
2, the minimum password aging
3, password history
4, minimum password length
5, password complexity
6, encryption options
7, password lock
8, account reset