put an end to brute forcing

Ice771x · **Joined:** Jun 2006 **Posts:** 1562 **Location:**

idk if this is actually how it works. but doesnt a brute force program just use a login and try tons of different passwords till one works?

if thats true, why doesnt jm make it so like. if your password is entered wrong say...8 times, it doesnt let you log in until you go to the website and put in your login name and a code they send you thru email?

Chaby · **Joined:** Apr 2006 **Posts:** 1468

Ice771x wrote:

idk if this is actually how it works. but doesnt a brute force program just use a login and try tons of different passwords till one works?

if thats true, why doesnt jm make it so like. if your password is entered wrong say...8 times, it doesnt let you log in until you go to the website and put in your login name and a code they send you thru email?

After you enter wrong pw 5 times you get DC'ed. Email thing wouldnt work, someone could make you change your pw every day.

Chaud · **Joined:** Apr 2006 **Posts:** 1950

But that would require work...
It cannot be that hard, any p2p game has no problem with that.

Fusion · **Joined:** Nov 2006 **Posts:** 31 **Location:** Canada

Yes yes, There are hacks and cheats and Crap for silkroad everywhere...

Example: Gamerzplanet.net
http://www.elitepvpers.de

Thats the site ive seen at least. Check them out but dont use the crap there...

Botting is Stupid.. Do your own work.. I dont do my own work but i dont bot..

STAY LEGIT

Blackchocob0 · **Joined:** Sep 2006 **Posts:** 2840 **Location:** HIV, CA

Even Runescape has a system that prevents a wrong password so many times. :roll:

Fusion · **Joined:** Nov 2006 **Posts:** 31 **Location:** Canada

LOL now thats saying something.. Runescape in my opinion is a Horrible Game.. Click on an enemy once and pray you hit good numbers.. LMAO

Anyway Point well made... Ill stop flaming Runescape :cry:

Megalomaniac · **Joined:** Jul 2006 **Posts:** 3132

Ice771x wrote:

if thats true, why doesnt jm make it so like. if your password is entered wrong say...8 times, it doesnt let you log in until you go to the website and put in your login name and a code they send you thru email?

Silly...Since when monkies can do such things? O_o

Penguin13 · **Joined:** Apr 2006 **Posts:** 940 **Location:**

Or, if they had what MapleStory has. A second secret password that you click little keys on a keyboard onscreen to enter. No typing.

BOSCOpwns · **Joined:** Nov 2006 **Posts:** 334 **Location:**

Now I am not experienced in hacking or anything, but there are countermeasures a server can take to prevent brute force attacks.. a simple google search would show, with a little bit of router maintenence, you could prevent this seemingly barbaric attack.

However, one way a hacker could do it I believe is using a gui hacking attack somehow in which they would bruteforce on that and not on JM's online server. BUT, Jm doesnt have a log in timeout/login tries limit on their website, so if they don't even have that, they probably didn't go through the countermeasures with their servers and network to prevent bruteforce.

ArgentEyez · **Posted:** Sun Dec 03, 2006 7:08 pm

A well build bruteforcer will change ips on every attack, it will be clientless meaning its not gonna open silkroad.exe to attack - this making it faster to bypass the 5 pass wrong dc event.

iGod · **Joined:** Oct 2006 **Posts:** 3728 **Location:**

When i was a wannabe hacker lol I tried bruteforcing myself, dictionary attack, done in 2 minutes... yep they should really do something about that

Silkroad Online Forums

put an end to brute forcing

Who is online