Lecture3

Access attacks exploit known vulnerabilities in authentication services, FTP services, and web services to gain entry to web accounts, confidential databases, and other sensitive information. An access attack can be performed in many different ways. An access attack often employs a dictionary attack to guess system passwords. There are also specialized dictionaries for different languages that can be used.
Unauthorized attacks are attempted via four means, all of which try to bypass some facet of the authentication process: password attacks, trust exploitation, port redirection, and man-in-the-middle attacks.
Password Attacks
Nowadays, it seems as if you need a password for everything. I have so many passwords that I find it hard to keep track. Although it might sound like a good idea to keep your passwords simple or to write them down, both practices are highly discouraged. The goal is to make it harder for someone to find or guess your password; therefore, password integrity is necessary. That being said, an attacker might attempt a login with false credentials. It is also important to note that not all