You are viewing a plain text version of this content. The canonical link for it is here.
Posted to jetspeed-user@portals.apache.org by Shah Amit <am...@hotmail.com> on 2005/08/01 00:10:14 UTC
RE: How secure is Jetspeed from beeing hacked?
I would like to know more about this too !! I think it doens't depend much
on jetspeed because jetspeed is not opening up any special ports or special
services. I would guess it more depends the webapplication that we write. If
that is more hack prone, I dont think jetspeed can do anything for that ??
...
Thanks,
Amit
----Original Message Follows----
From: <ap...@salesfactory.org>
Reply-To: "Jetspeed Users List" <je...@portals.apache.org>
To: "Jetspeed Users List" <je...@portals.apache.org>
Subject: How secure is Jetspeed from beeing hacked?
Date: Sun, 31 Jul 2005 23:15:22 +0200
Hello,
how secure is the Jetspeed-login from beeing hacked?
Thanks and best regards.
---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-user-unsubscribe@portals.apache.org
For additional commands, e-mail: jetspeed-user-help@portals.apache.org
RE: How secure is Jetspeed from beeing hacked?
Posted by Scott T Weaver <sc...@binary-designs.net>.
By default, a three strikes method is implemented so dictionary attacks
won't work. There are also settings for:
- Min password length
- Password contents
- Password expiration
- Encrypted password storage
I think either Ate or David Le Strat can comment further or correct me if I
am wrong.
Hth,
Scott
> -----Original Message-----
> From: Shah Amit [mailto:amit_shah25@hotmail.com]
> Sent: Sunday, July 31, 2005 6:10 PM
> To: jetspeed-user@portals.apache.org
> Subject: RE: How secure is Jetspeed from beeing hacked?
>
> I would like to know more about this too !! I think it doens't depend much
> on jetspeed because jetspeed is not opening up any special ports or
> special
> services. I would guess it more depends the webapplication that we write.
> If
> that is more hack prone, I dont think jetspeed can do anything for that ??
> ...
>
> Thanks,
> Amit
>
> ----Original Message Follows----
> From: <ap...@salesfactory.org>
> Reply-To: "Jetspeed Users List" <je...@portals.apache.org>
> To: "Jetspeed Users List" <je...@portals.apache.org>
> Subject: How secure is Jetspeed from beeing hacked?
> Date: Sun, 31 Jul 2005 23:15:22 +0200
>
> Hello,
>
> how secure is the Jetspeed-login from beeing hacked?
>
> Thanks and best regards.
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: jetspeed-user-unsubscribe@portals.apache.org
> For additional commands, e-mail: jetspeed-user-help@portals.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-user-unsubscribe@portals.apache.org
For additional commands, e-mail: jetspeed-user-help@portals.apache.org