Re: [Full-disclosure] SSH brute force blocking tool

From: Michael Holstein <michael.holstein@xxxxxxxxxxx>
Date: Mon, 27 Nov 2006 16:53:18 -0500

That specially crafted attempt would be a HUGE raping of TCP/IP. How do
you supposed it would be possible for someone to insert 0wn3ed or any
other variable outside of an IP address?

Remember the (in)famous quote "...that vulnerability is purely
theoretical..."?

I think the point is you don't use $language to split a bunch of fields,
and then pipe them back through /bin/sh without making sure they're not
malicious.

Doesn't matter that you can't think of a way to make them malicious ..
somebody else will find one. It's safer to just assume it'll happen and
always sanitize variables before you {do_stuff;} with them.

(my $0.02)

~Mike.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] SSH brute force blocking tool
  - From: J. Oquendo

References:
- [Full-disclosure] SSH brute force blocking tool
  - From: J. Oquendo
- Re: [Full-disclosure] SSH brute force blocking tool
  - From: Tavis Ormandy
- Re: [Full-disclosure] SSH brute force blocking tool
  - From: J. Oquendo
- Re: [Full-disclosure] SSH brute force blocking tool
  - From: Tavis Ormandy
- Re: [Full-disclosure] SSH brute force blocking tool
  - From: J. Oquendo
- Re: [Full-disclosure] SSH brute force blocking tool
  - From: gabriel rosenkoetter
- Re: [Full-disclosure] SSH brute force blocking tool
  - From: gabriel rosenkoetter
- Re: [Full-disclosure] SSH brute force blocking tool
  - From: Tavis Ormandy
- Re: [Full-disclosure] SSH brute force blocking tool
  - From: J. Oquendo

Prev by Date: Re: [Full-disclosure] SSH brute force blocking tool
Next by Date: Re: [Full-disclosure] SSH brute force blocking tool
Previous by thread: Re: [Full-disclosure] SSH brute force blocking tool
Next by thread: Re: [Full-disclosure] SSH brute force blocking tool
Index(es):
- Date
- Thread

Relevant Pages

Re: [Full-disclosure] n.runs-SA-2007.027 - Sophos Antivirus UPX parsing Arbitrary Co
... Unfortunately we can't give more details about the vulnerability ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ...
(Full-Disclosure)
Re: [Full-disclosure] Google Groups e-mail disclosure in plain text
... one vulnerability? ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ...
(Full-Disclosure)
Re: [Full-disclosure] defining 0day
... vulnerability" or "fully disclosed vulnerability". ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ...
(Full-Disclosure)
Re: [Full-disclosure] Advisory 03/2007: Multiple Browsers Cross Domain Charset Inheritance Vulne
... exploit for this vulnerability. ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ...
(Full-Disclosure)
RE: [Full-Disclosure] DOS all platforms
... Has anyone been following the thread on NTCanuck ref a DOS vulnerability ... Full-Disclosure - We believe in it. ... Charter: http://lists.netsys.com/full-disclosure-charter.html ...
(Full-Disclosure)