LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

brute force attacks

brute force attacks

Posted May 15, 2008 16:59 UTC (Thu) by kh (subscriber, #19413)
Parent article: Debian vulnerability has widespread effects 

So I guess we will next start to see brute force attacks to ssh keys in addition to the
current dictionary attacks on passwords against ssh. In the past I was seeing such high volume
of ssh attempts that they were acting as a denial of service attack on certain servers. I
stopped this with denyhosts myself - I think this highlights another good of only giving an IP
address a limited number of failed attempts on any authenticated service.

(Log in to post comments)

brute force attacks

Posted May 16, 2008 15:31 UTC (Fri) by ranmachan (subscriber, #21283) [Link] 

There's already a proof of concept exploint on full-disclosure:
http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/20...

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds