Re: shutting down dictionary attacks
From: Josh Grosse (josh_at_jggimi.homeip.net)
Date: 07/04/05
- Previous message: Josh Grosse: "Re: shutting down dictionary attacks"
- In reply to: Guillaume Vissian: "Re: shutting down dictionary attacks"
- Next in thread: Brian J. Woods: "Re: shutting down dictionary attacks"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 4 Jul 2005 14:49:05 -0400 To: secureshell@securityfocus.com
On Mon, Jul 04, 2005 at 09:47:02AM +0200, Guillaume Vissian wrote:
> Are you using password login or Public key, perhaps it's the way, you
> disable the password login and script kiddies are immediately
> rejected...
Public keys (Protocol 2, RSA) only. As I'd stated in my OP, *I* use
standard clients (Putty/OpenSSH/Portable OpenSSH), and there is no
password prompt.
I STFAed and learned that the scripts don't check
auth types, they brute-force passwords anyway.
- Previous message: Josh Grosse: "Re: shutting down dictionary attacks"
- In reply to: Guillaume Vissian: "Re: shutting down dictionary attacks"
- Next in thread: Brian J. Woods: "Re: shutting down dictionary attacks"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
