|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: yet another OpenSSH timing leak?
From: Gianluca Varisco (giangy
techtemple.org)
Date: Mon Oct 09 2006 - 17:41:25 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Marco Ivaldi wrote:
> It needs expect, and target ssh hostkey must be already added. I'd be
> very interested in knowing the results of tests performed on other
> distros and configurations.
>
Hi Marco,
nice to meet you :-). I tried to do this test over my 10 Mbps lan and
this is the result:
giangythor:~/dev$ ./sshtime calipso users.txt
acalipso real 9.55
rootcalipso real 9.33 <- valid user with shell
wheelcalipso real 10.44
giangycalipso real 9.49
cdromcalipso real 9.68
burningcalipso real 9.47
mysqlcalipso real 9.35
operatorcalipso real 9.59 <- valid user with shell
testcalipso real 9.51 <- valid user with shell
Another test:
acalipso real 9.37
rootcalipso real 9.90 <- valid user with shell
wheelcalipso real 10.66
giangycalipso real 9.41
cdromcalipso real 9.30
burningcalipso real 10.30
mysqlcalipso real 9.47
operatorcalipso real 10.21 <- valid user with shell
testcalipso real 10.98 <- valid user with shell
daemoncalipso real 7.14
abcdcalipso real 7.20
"root", "operator" and "test" are valid users with a valid shell
enabled. I made this test on Slackware 11.0 (fresh installation) with
OpenSSH_4.4p1. I used the default sshd_config (see
http://slackware.osuosl.org/slackware-current/source/n/openssh/ for more
informations about the package). So, I don't received any timing leak in
this session.
I'll try as possible other distributions and configurations. However,
good work Marco :-).
Best Regards,
Gianluca Varisco
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]