Re: Attacks on ssh port
From: Nick Cleaton (nick_at_cleaton.net)
Date: 09/23/04
- Previous message: Dag-Erling Smørgrav: "Re: Attacks on ssh port"
- In reply to: Dag-Erling Smørgrav: "Re: Attacks on ssh port"
- Next in thread: Alex de Kruijff: "Re: Attacks on ssh port"
- Maybe reply: Craig Edwards: "Re: Re: Attacks on ssh port"
- Maybe reply: Craig Edwards: "Re: Re: Attacks on ssh port"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 23 Sep 2004 10:28:59 +0200 To: Dag-Erling Smorgrav <des@des.no>
On Thu, Sep 23, 2004 at 10:09:22AM +0200, Dag-Erling Smorgrav wrote:
> Nick Cleaton <nick@cleaton.net> writes:
> > I want access to my system from any IP address, so I've patched my
> > sshd so that a secret token is required to connect.
[...]
> Look up "replay attack" on google...
Indeed, this doesn't keep out attackers who can sniff a valid session,
just like tcp_wrappers doesn't keep out attackers who can spoof an
authorized source address.
Nick
-- $_='YN8KuE*** http://www.exonetric.com/ Telehouse UK colo ***HARQr**' .'NfzV0YrC1*** GBP40/month +VAT 40G BW no setup fee ***MnjJ**' .'6QvtcPgQ20*** ***nlS**' ;s/(.)(.*(.))/$2.chr(32+(ord($1)+ord$3)%89)/euntil/Foo/;eval#****' _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
- Previous message: Dag-Erling Smørgrav: "Re: Attacks on ssh port"
- In reply to: Dag-Erling Smørgrav: "Re: Attacks on ssh port"
- Next in thread: Alex de Kruijff: "Re: Attacks on ssh port"
- Maybe reply: Craig Edwards: "Re: Re: Attacks on ssh port"
- Maybe reply: Craig Edwards: "Re: Re: Attacks on ssh port"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
