At the server side, the protocol sets up a maximum trying number to prevent the brute-forceattack, and a look-ahead parameter to realize counter resynchronization.
该协议通过在服务器端设置最大认证尝试次数来防止蛮力攻击,并设置前顾参数来实现计数器重同步。
2
Facebook accounts can be compromised by an attacker who might steal this information from another site-or guess it by trying many combinations in succession (a so-called brute-forceattack).