[ On , October 7, 2004 at 09:07:34 (-0700), Wolfgang S. Rupprecht wrote: ]
> Subject: sshd password guessing attacks on the rise
>
> The sheer size of the dictionary attack is almost certainly going to
> net them quite a few compromised systems.  Back when telnet was all we
> had I used to test password files against small dictionaries like that
> all the time.  On average 10% of the passwords were easily guessable.
> I don't doubt that whoever is doing this is finding lots of lightly
> secured machines.

Does anyone have a copy of the dictionary used by the SSH attacker(s)?

I would sure like to add it to the list of dictionaries I use with the
changes I posted in PR#10206!  ;-)

-- 
						Greg A. Woods

+1 416 218-0098                  VE3TCP            RoboHack <woods@robohack.ca>
Planix, Inc. <woods@planix.com>          Secrets of the Weird <woods@weird.com>