Re: [Full-Disclosure] SNMP Broadcasts

• Previous message: Janek Vind: "[Full-Disclosure] [waraxe-2004-SA#034 - XSS and path full path disclosure in PhpBB 2.0.8]"
• In reply to: J.A. Terranson: "Re: [Full-Disclosure] SNMP Broadcasts"
• Next in thread: J.A. Terranson: "Re: [Full-Disclosure] SNMP Broadcasts"
• Reply: J.A. Terranson: "Re: [Full-Disclosure] SNMP Broadcasts"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: "J.A. Terranson" <measl@mfn.org>
Date: Fri, 16 Jul 2004 10:29:55 -0400

J.A. Terranson wrote:

>>Oh, I get it. So if root executes "sshd -p 45522" --this is not
>>*technically* ssh, right?
>>
>>
>
>If sshd is running on 45522 it's a back door Marty :-) And no, in this
>case, pedantic or not, it's not "ssh" as is commonly accepted.
>
>
>

(Responding to essentially the only on-topic issue in this e-mail...)

I disagree. It may not be completely standard compliant (in so far as
the standard assigns a common usage port), but it sure as hell is the
SSH protocol.

When you say "that's running on this port, but it's not SSH" you're not
sending the message to people that it's not SSH because it has to be
compliant, you're sending the message to people that it's *not the SSH
protocol at all*...

I think the fact that you're being pedantic with this issue confuses the
point and is, pretty much, worthless. No one, frankly, gives a sh*t if
you consider it to not be SSH because it's not on the port that makes
you happy -- especially if you're not happy about it because you woke up
on the wrong side of the bed or because someone pissed in your cheerios
or whatever reason.

Saying what you said above is counterproductive and will only serve to
confuse people. Perhaps you should wratchet up your pedantic nature and
instead of saying that it's "not SSH because it's on the wrong port" say
"it's non-compliant SSH because it's on the wrong port".

Otherwise it's a case of the pot calling the kettle black.

          -Barry

p.s. This is the end of that issue as far as I'm concerned. If you
continue to claim that it's "not the SSH protocol", you're just being
difficult.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

• Previous message: Janek Vind: "[Full-Disclosure] [waraxe-2004-SA#034 - XSS and path full path disclosure in PhpBB 2.0.8]"
• In reply to: J.A. Terranson: "Re: [Full-Disclosure] SNMP Broadcasts"
• Next in thread: J.A. Terranson: "Re: [Full-Disclosure] SNMP Broadcasts"
• Reply: J.A. Terranson: "Re: [Full-Disclosure] SNMP Broadcasts"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: ssh gives "Permission denied, please try again" ... port 22 on your internal machine, so you will need to keep ssh up to ... I configure the router to forward a different external port to 22 on my ... For good measure pick usernames that are none obvious, ... root/password: 163 times ... (uk.comp.os.linux) [NEWS] SSH service at Dell DRAC4 Denial of Service (Mocana) ... SSH service at Dell DRAC4 Denial of Service ... Dell Remote Access Card 4 allows customers to effectively manage ... After the use of such a port scanner, ... (Securiteam) Re: Remote Desktop directly to another computer on the network ... default port... ... And there is no reason for me to believe that ssh ... When I have a multibillion company I will use the key pair, ... WinSCP for that to access my home SSH server. ... (microsoft.public.windowsxp.work_remotely) Re: SSH safety ... SSH safety (J.L. ... FC3 missing KDE menu items ... I was wondering how safe it is to open the ssh port up to the internet. ... (Fedora) Re: Mac `owned in hacking competition ... the router's port forwarding rules. ... The firewall or a NAT router only stops connections initiated from ... ssh will let you set up forwarded ports in both ... You start an ssh session from the target machine (this is ... (uk.comp.sys.mac)