Brute Force Attacks – How?

I have always wondered how exactly a brute force attack works. I understand, that there is an algorithm, that tries out every password combination over and over until it finds a hit. Now with simple passwords and fast processors this seems like an easy task.

What I don't understand, is how the server allows this. Let's say you don't use a Login Captcha. Even then the server should be able to identify these attacks easily. Either bc someone is trying to log in into the same account over and over again or due to the IP Address. Even if you change your IP Address and Account every time, can the server not just delay the response to limit the amount of attempts?

Or is it, that Brut Force attacks only work on very unprotected servers ?

Touch here for the full post on Network Security Noblemen tumblr

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s