Security Incidents mailing list archives
Re: SSH bruteforce on its way...
From: Valdis.Kletnieks () vt edu
Date: Tue, 25 Oct 2005 19:08:32 -0400
On Tue, 25 Oct 2005 09:17:07 +1300, Russell Fulton said:
Would you please provide some supporting references. I can not find any evidence of existing timing attacks against openssh. In fact Openssh goes to some trouble to defeat such attacks.
Russell, your google-foo is obviously weak. Google'ed for '+ssh +timing +attack', and the first few hits are against the keystroke-timing issue, and about number 6 is: http://lists.debian.org/debian-ssh/2004/11/msg00053.html which says: CAN-2003-0190 describes a flaw in ssh's password prompt timing which makes it easy for an attacker to determine if a username exists on a machine. I've checked and testing and unstable's versions of ssh are vulnerable. Details and some fixes are in this message: http://marc.theaimsgroup.com/?l=bugtraq&m=3D105172058404810&w=2 References enough? ;)
Attachment:
_bin
Description:
Current thread:
- SSH bruteforce on its way... Volker Tanger (Oct 19)
- Re: SSH bruteforce on its way... Paul Robertson (Oct 24)
- Re: [incidents] Re: SSH bruteforce on its way... Tim Kennedy (Oct 24)
- <Possible follow-ups>
- Re: SSH bruteforce on its way... foxxz . net (Oct 24)
- Re: SSH bruteforce on its way... jouser (Oct 24)
- Re: SSH bruteforce on its way... Justin (Oct 24)
- Re: SSH bruteforce on its way... Russell Fulton (Oct 25)
- Re: SSH bruteforce on its way... Valdis . Kletnieks (Oct 26)
- Re: SSH bruteforce on its way... Kurt Seifried (Oct 26)
- Re: SSH bruteforce on its way... Justin (Oct 26)
- Re: SSH bruteforce on its way... Daniel Cid (Oct 26)
- Re: SSH bruteforce on its way... Justin (Oct 24)
- Re: SSH bruteforce on its way... Valdis . Kletnieks (Oct 25)
- Re: SSH bruteforce on its way... Paul Robertson (Oct 24)
- Re: SSH bruteforce on its way... Michael . Lang (Oct 25)
- Re: SSH bruteforce on its way... Javier Fernandez-Sanguino (Oct 26)
- Re: SSH bruteforce on its way... Volker Tanger (Oct 26)
- SNMP worm? David Gillett (Oct 26)
- Re: SNMP worm? Mark Ryan del Moral Talabis (Oct 26)
- RE: SNMP worm? David Gutierrez (Oct 26)
- Re: SSH bruteforce on its way... Javier Fernandez-Sanguino (Oct 26)