|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-disclosure] SSH brute force blocking tool
From: gabriel rosenkoetter (gr
eclipsed.net)
Date: Mon Nov 27 2006 - 15:49:20 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Mon, Nov 27, 2006 at 04:41:43PM -0500, J. Oquendo wrote:
> That specially crafted attempt would be a HUGE raping of TCP/IP. How do
> you supposed it would be possible for someone to insert 0wn3ed or any
> other variable outside of an IP address?
That's impossible.
Putting extra spaces in the log entry is easy.
--
gabriel rosenkoetter
greclipsed.net
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (NetBSD)
iD8DBQFFa11g9ehacAz5CRoRAqBcAJ97KLzxcNBAtivdSH2yh+SRS+Jv0gCfZyLz
XwYfJpg2mp4TplBdN4d+AHM=
=bYCG
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]