Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Automated SSH login attempts?
From: Christian Fromme <derfromme () gmx de>
Date: Fri, 30 Jul 2004 01:59:03 +0200

Ali Campbell <fdisclosure () alicampbell org uk> wrote:

Do I take it that these things are just trying to log in using some 
guessed password(s) ? Out of interest, do we have any idea what these 
opportunistic passwords might be ?

As far as I have heared this is an 0day "exploit" which does nothing but
trying to bruteforce some accounts like "admin" "test" and so on with
passwords like "test" "1234" and i dont know what. 
Seems to be not too serious because noone actually has those account in
real life. ;)

Best wishes,

Christian Fromme

chris at kaner.shacknet.nu
PGP-Pubkey: http://www.informatik.fh-wiesbaden.de/~cfrom001/pgp/index.html

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]