tech-security: Re: sshd password guessing attacks on the rise

Subject: Re: sshd password guessing attacks on the rise
To: Steven M. Bellovin <smb@research.att.com>
From: Wolfgang S. Rupprecht <wolfgang@wsrcc.com>
List: tech-security
Date: 10/07/2004 09:25:11

Steven M. Bellovin writes:
> In message <x73c0qzf3t.fsf@bonnet.wsrcc.com>, "Wolfgang S. Rupprecht" writes:
> >The sheer size of the dictionary attack is almost certainly going to
> >net them quite a few compromised systems. 
> 
> s/is.*going to/already has/
> 
> from what I hear on various security lists...

Interesting.  

I wonder why the security orgs aren't making more of a deal about this
and shouting about it from the parapets.  The more machines these
folks compromise, the faster the rest will fall.

-wolfgang
-- 
Wolfgang S. Rupprecht  <wolfgang@wsrcc.com>  http://www.wsrcc.com/wolfgang/
    VOIP: sip:wolfgang@wsrcc.com   (or 6001@wsrcc.com, FWD-429102)