htpasswd security

Need help installing PHP, configuring a script, or configuring a server? Then come on in and post your questions! We'll try to help the best we can!

Moderator: General Moderators

Post Reply
d3ad1ysp0rk
Forum Donator
Posts: 1661
Joined: Mon Oct 20, 2003 8:31 pm
Location: Maine, USA

htpasswd security

Post by d3ad1ysp0rk »

Does anyone have an idea whether someone could use brute force against an apache .htpasswd setup? I'm not quite sure whether Apache has preventative methods setup for this, and if so, could the attacker just use a set of proxies to get around them?
User avatar
feyd
Neighborhood Spidermoddy
Posts: 31559
Joined: Mon Mar 29, 2004 3:24 pm
Location: Bothell, Washington, USA

Post by feyd »

In most instances, brute forcing is possible. This is one of those cases.
Post Reply