How to prevent brute force attacks

If you are having a problem using SourceOffSite, post a message here.

Moderator: SourceGear

Post Reply
aluetjen

How to prevent brute force attacks

Post by aluetjen » Sat Apr 17, 2004 2:38 pm

Hi,

we're currently evaluating SOS as it is exactly what we're looking for :D. However makeing the VSS database accessible from the web (no VPN available at the moment) is quite a security risk. So I was wondering if there's some feature that prevents the server from being brute force attacked considering user/passwords. Is there some kind of account lockout after n-invalid logins or something like that?

Regards,

Alex

lbauer
Posts: 9736
Joined: Tue Dec 16, 2003 1:25 pm
Location: SourceGear

Post by lbauer » Mon Apr 19, 2004 8:32 am

We've never had a report of a VSS security breach from SOS users.

You can create a more secure connection by using encryption. More info here:

http://support.sourcegear.com/viewtopic.php?t=457

Also, you can configure the firewall to only let through certain IP addresses.
Linda Bauer
SourceGear
Technical Support Manager

Post Reply