Re: brute force ssh attack

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
Subject: Re: brute force ssh attack
From: Nigel Wade <nmw@xxxxxxxxxxxx>
Date: Fri, 29 Apr 2005 14:08:15 +0100
In-reply-to: <[email protected]>
List-archive: <https://www.redhat.com/archives/fedora-list>
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
References: <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
User-agent: Mozilla Thunderbird 1.0 (X11/20041206)

Matthew Miller wrote:

On Fri, Apr 29, 2005 at 11:57:24AM +0100, Nigel Wade wrote:
It was completely manual, the virus didn't install itself. It was injected by someone breaking in via ssh and then manually downloading an infected file. It's not like a STD, it's like a virus which can only be spread by direct injection.
That's the difference between a virus and a worm. It *does* have a mechanism
to spread between files on a machine, but doesn't have one to go between
machines without piggybacking on something else. (Which it did.)

For a virus to be viable it has to be able to infect files in such a way that those infected files are likely to spread the virus. This one doesn't. It needs to be spread manually, hence my threat rating of ~0.


--
Nigel Wade, System Administrator, Space Plasma Physics Group,
            University of Leicester, Leicester, LE1 7RH, UK
E-mail :    nmw@xxxxxxxxxxxx
Phone :     +44 (0)116 2523548, Fax : +44 (0)116 2523555

Follow-Ups:
- Re: brute force ssh attack
  - From: Matthew Miller

References:
- Re: brute force ssh attack
  - From: Daniel Kirsten
- Re: brute force ssh attack
  - From: Håkan Persson
- Re: brute force ssh attack
  - From: Gustavo Seabra
- Re: brute force ssh attack
  - From: Nigel Wade
- Re: brute force ssh attack
  - From: Matthew Miller
- Re: brute force ssh attack
  - From: Nigel Wade
- Re: brute force ssh attack
  - From: Matthew Miller
- Re: brute force ssh attack
  - From: Nigel Wade
- Re: brute force ssh attack
  - From: Matthew Miller
- Re: brute force ssh attack
  - From: Nigel Wade
- Re: brute force ssh attack
  - From: Matthew Miller

Prev by Date: Re: clamav and spamassassin
Next by Date: Re: configuring clamav for postfix
Previous by thread: Re: brute force ssh attack
Next by thread: Re: brute force ssh attack
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]