LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Preventing brute force ssh attacks

Preventing brute force ssh attacks

Posted Oct 25, 2007 21:22 UTC (Thu) by utoddl (subscriber, #1232)
In reply to: Preventing brute force ssh attacks by madscientist
Parent article: Preventing brute force ssh attacks 

This is why I like working for a university. Firewall? Sure, you can install your own if you
want one. And we do have _some_ things walled off, but by and large most hosts are highly
exposed to the internet.

It drives vendors nuts, 'cause many of their products assume there's a draconian firewall
between them an the world, so they claim they don't need to deal with security issues. They
often know nothing about SSL, kerberos, keys,... they just trust the firewall which, to their
amazement, isn't there!

One of the best was a demo by an ERP vendor. They were showing off their stuff, how cool and
secure it was. Then somebody in the back of the room with a wireless Mac laptop took over the
presenter's session. He gave it back, but not before making his (and breaking the presenter's)
point about the system's security.

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds