Subject: Re: FreSSH
To: NetBSD-current Discussion List <current-users@netbsd.org>
From: Charles Shannon Hendrix <shannon@widomaker.com>
List: current-users
Date: 03/15/2002 13:01:25
On Mon, Mar 11, 2002 at 03:07:39PM -0500, Greg A. Woods wrote:
> > I think they said that had everyone originated from their own machine,
> > the crack wouldn't have happened.
>
> They might have said that, but if so then they would be incorrect as
> they would be making unwarranted assumptions about the client machines.
Understood, but the attack in question was launched from the intermediary
machine, specifically against those using it as a gateway. It was never
against client machines.
So, I think they are mostly likely correct, unless you happen to know for
a fact that the client machines were the next item on the attackers list.
--
UNIX/Perl/C/Pizza__________________________________shannon@widomaker.com