Users re-use passwords for multiple services. |
Watumizi hurejelea nywili zao kwa matumizi mbali. |
If an attacker gains access to one server and can gain a list of passwords, he may be able to use this password to attack other services. |
Mwizi wa kidigitali akipata kibali bila ruhusa kwa seva ana uwezo wa kupata hizo nywila na kuzitumia kushambulia huduma zako ziginezo. |
Therefore, only password hashes may be stored. |
Kwa hivyo nywila zilizolindwa huhifadhiwa. |
Secure hashing algorithms are easy to use in most languages and ensure the original password cannot be easily recovered and that wrong passwords are not falsely accepted. |
Miundo salama huwa heri kutumia kwa lugha mbalimbali kwa sababu husaidia kuhifadhi nywila asili na nywili mbovu hazikubaliki. |
Adding salts to the password hashes prevents the use of rainbow tables and significantly slows down brute-force attempts. |
Kuongeza chumvi kwa nywila zilizolindwa husaidia kuepuka matumizi ya meza ya upinde wa mvua na kupunguza uwezekano wa utumizi wa nguvu za brute . |
Strengthening slows both off-line brute-force attacks against stolen hashes and on-line brute-force in case the rate limiting fails. |
Kuimarisha hupunguza utumizi wa nguvu za brutu ukiwa nje ya intaneti dhidi ya hashi zilizoibwa na utumizi wa nguvu za brute ukiwa kwa matandao, ijapo kiwango cha mpaka huharibika. |
However, it increases CPU load on the server and would open a vector for DDoS attacks if not prevented with login attempt limiting. |
Lakini huzawadisha mzigo wa CPU kwa hifadhi na unaweza fungua mlango wa kutelekeza shambulio la ukosefu wa huduma kama hakuna jaribio la kuingia kwenye akounti. |
A good strengthening can slow down off-line brute-force attacks down by a factor of 10000 or more. |
Uimarisho wema hupunguza utumizi wa nguvu za brutu ukiwa nje ya intaneti kwa asilimia ngiri kumi kuendelea. |
Limiting login attempts is necessary to prevent on-line brute-force attacks and DoS via the CPU usage of the password strengthening procedure. |
Kueka kikomo cha majaribio ya kuingia kwa akounti huea muhimu kuzuia utumizi wa nguvu za brute ukiwa kwa matandao na ata shambulio la ukosefu wa huduma kwenye utumizi wa nywila zilizoimarishwa. |
Without a limit, an attacker can try a very large number of passwords directly against the server. |
Bila kuwa na kiwango, mwizi wa kidigitali anaweza jaribu nywila refu dhidi ya mahali hifadhi. |
Assuming 100 attempts per second, which is reasonable for a normal web server, no significant strengthening and an attacker working with multiple threads, this would result in 259,200,000 passwords tried in a single month! |
Kwa mfano majaribio mia moja kila sekunde, ambalo ni busra kwa webserver ya kawaida, na hakuna uimarisho kwa ivo mwizi wa kidigitali akitumia nyuzi nyingi atakuwa amejaribu mara 259,200,000 kwa mwezi mmoja. |
Not enforcing any password policies will lead to too many users choosing “123456”, “qwerty” or “password” as their password, opening the system up for attack. |
Kutotelekeza maelekezo ya nywila utasababisha watumizi kuchukua maneno yanayojulikana sana kama nywila zao kwa hivyo kuwa wazi kwa shambulizi kwenye akounti zao. |
Enforcing too strict password policies will force users to save passwords or write them down, generally annoy them and foster re-using the same password for all services. |
kutelekeza maelekezo ya nywili kali hutafanya watumizi wahifadhi nywili ama waziandike, ili jambo huwakasirisha na kuwalazimisha kutumiza nywila moja kwa huduma zao zote. |
Furthermore, users using secure passwords not matching the policies may be forced to use passwords which are harder to remember, but not necessarily secure. |
Zaidi, watumizi wanaotumia nywila salama bila kufuatilia maelekezo wanaweza kulazimshwa kutumia nywili ngumu kukumbuka na ata si salama. |
A password consisting of 5 concatenated, randomly (!) chosen lowercase dictionary words is significantly more secure than an eight-character password consisting of mixed case letters, numbers and punctuation. |
Nywila huwa na maneno tano, maneno yaliyo chini na yaliyo chaguiwa kwa nasibu huwa salama kuliko maneno manane yanayohusu herufi changanishi, nambari na utumizi wa vituo andishi. |
Take this into account if you do not get a password policy to implement, but have to design your own. |
Usipopata sera ya nywil ya kutelekeza, uunda yako kitaraibu. |