[ILUG] SSH dictionary attacks.
kevin lyda
kevin at ie.suberic.net
Thu Aug 24 13:02:30 IST 2006
On Wed, Aug 23, 2006 at 03:59:56PM +0100, paul at clubi.ie wrote:
> However the ssh server has:
>
> - no control over whether the remote user does or does not protect
> their key with a pass phrase
ok, yes, but there's a major difference: in general the user's ssh key
is not accessible directly via the net; the ssh login password is.
if i want to use paul's key to break into server target.com.ie i have to
go find paul's key. where is that? and once i figure out that it's on
laptop x that is usually behind a firewall, how do i get to it?
in my mind that's a big win.
kevin
--
Kevin Lyda US Citizen Abroad? Had Enough? Register
kevin at ie.suberic.net **** to vote: www.VoteFromAbroad.org ****
"I was a Republican until they lost their minds."
-- Charles Barkley
More information about the ILUG
mailing list