[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] SSH scans, i caught one

To: Robin <robin@xxxxxxxxx>
Subject: Re: [Full-disclosure] SSH scans, i caught one
From: Marco van Berkum <marco@xxxxxxx>
Date: Sat, 20 Nov 2010 15:14:11 +0100

On 11/20/2010 02:58 PM, Robin wrote:
> MIPS is very common in routers - most home ones I've seen are MIPS. As
> for purpose, it's a good place to DDoS from, because it's very hard to
> detect. It's also a very nice place to sniff passwords from, as you get
> a whole network's traffic passing through, and it's extremely hard to
> detect.

Most homerouters I've seen are ARM, I actually never had a MIPS :)
Guess its time to setup Qemu-MIPS to see what it does exactly.

And maybe name it? If it's not a already known botnet that is.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] SSH scans, i caught one
  - From: Egon Alter
- Re: [Full-disclosure] SSH scans, i caught one
  - From: Robin
- Re: [Full-disclosure] SSH scans, i caught one
  - From: andrew wiggin

References:
- Re: [Full-disclosure] SSH scans, i caught one
  - From: OrderZero
- Re: [Full-disclosure] SSH scans, i caught one
  - From: Marco van Berkum
- Re: [Full-disclosure] SSH scans, i caught one
  - From: Robin

Prev by Date: Re: [Full-disclosure] SSH scans, i caught one
Next by Date: [Full-disclosure] DLINK router vulnerabilities
Previous by thread: Re: [Full-disclosure] SSH scans, i caught one
Next by thread: Re: [Full-disclosure] SSH scans, i caught one
Index(es):
- Date
- Thread