Đang chuẩn bị liên kết để tải về tài liệu:
Seven Deadliest Microsoft Attacks phần 3

Nếu chúng ta nghĩ về các mật khẩu mà chúng ta có và loại thông tin mà họ bảo vệ, tầm quan trọng của mật khẩu trở nên rõ ràng. Ví dụ, chúng ta nếu những gì đã có thể đăng ký tên người dùng cho các trang web xã hội như Twitter, A Facebook, B và LinkedInC mà không cần sử dụng | Defenses Against Windows Password Attacks 17 DEFENSES AGAINST WINDOWS PASSWORD ATTACKS As with most technologies available today there are many types of defensive measures organizations can take to help prevent password attacks. In addition to some of the defensive measures discussed in the following paragraphs even more resources are available at the Microsoft TechNetM Web site. A combination of many of the defenses discussed will help protect your organization against unauthorized access. Implementing security from a password perspective is probably one of the most critical decisions an organization can make. If passwords policies are too strict employees will start writing down passwords and storing them in weak areas. Additionally help desk calls will increase due to users locking out accounts due to failed logon attempts or requests to have passwords reset as sometimes people tend to forget usernames and passwords when they are expected to remember too many. On the other hand if passwords and password policies are too weak attackers will be more successful and will have an easier time gaining access to valid account credentials. In this section we explore some of the considerations for implementing password policy program and other controls to help reduce the risk of password attacks. Defense-in-Depth Approach Implementing defensive mechanisms in layers helps reduce the likelihood of a successful attack against your organizations assets. Although many password-based attacks are conducted directly against operating systems a good defensive network posture can mitigate many of the direct assaults against these assets. By implementing various controls at the desktop and throughout the network attacker advances can be severely impeded. These concepts are often referred to as defense-in-depth and have been an industry-recommended approach to security for many years. Protecting company assets should not stop at the border router or firewall but be implemented at .