Securing Internet passwords

Internet passwords can be subject to attacks by malicious sources. However, there are measures you can take to make Internet passwords more secure.

About this task

Here are some examples of typical password attacks:

  • One type of attack is an attempt to read all the hashed passwords in the Domino® Directory. A user's Internet password is stored in a hashed version in the user's Person record in the Domino® Directory. The directory is publicly accessible to all users of the system. You can protect against this sort of attack by using xACLs to stop access to the hashed passwords.
  • Another type of attack is that based on guessing passwords when authenticating. In this type of attack, users can still try to authenticate as someone else and try and guess passwords. You protect against this type of attack by using more secure password format, using passwords that are more difficult to guess, or by enabling the Internet password lockout feature on the server.

Use one or more of the following features to secure access to Internet passwords stored in the Domino® Directory, or make them more difficult to guess.

  • More secure password format
  • Internet password lockout
  • xACLs