[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] targetted SSH bruteforce attacks

To: "Marc Olive" <marc.olive@xxxxxxxxxxxx>
Subject: Re: [Full-disclosure] targetted SSH bruteforce attacks
From: bugs@xxxxxxxxxxx
Date: Sat, 26 Jun 2010 18:59:56 -0400 (EDT)

> A Dimarts 22 Juny 2010 04:06:03, bugs@xxxxxxxxxxx va escriure:
>> If you guys are interested I have a list of login/password combos they
>> use:
>>
>> http://vapid.dhs.org/ssh-attack-passwd.txt
>
> ]$ sort -u ssh-attack-passwd.txt > ssh-attack-passwd.2.txt
> ]$ wc -l ssh-attack-passwd.*
>  11701  ssh-attack-passwd.2.txt
>  16653  ssh-attack-passwd.txt
>
> And clean about 30% of repeated entries.

yea, thats just the raw log from my dummy ssh daemon.

>
> --
>
> Marc Olivé
> Grup Blau
>
> www.grupblau.com
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] [SECURITY] [DSA 2062-1] New sudo packages fix environment sanitization bypass vulnerability
  - From: Giuseppe Iuculano
- Re: [Full-disclosure] targetted SSH bruteforce attacks
  - From: Marsh Ray
- Re: [Full-disclosure] targetted SSH bruteforce attacks
  - From: bugs
- Re: [Full-disclosure] targetted SSH bruteforce attacks
  - From: Marc Olive

Prev by Date: [Full-disclosure] New IETF Internet-Drafts on TCP timestamps
Next by Date: [Full-disclosure] Many sites hacked at Bluehost (including their CEO blog)
Previous by thread: Re: [Full-disclosure] targetted SSH bruteforce attacks
Next by thread: Re: [Full-disclosure] targetted SSH bruteforce attacks
Index(es):
- Date
- Thread