Date: Thu, 23 Sep 2004 10:09:22 +0200 From: des@des.no (=?iso-8859-1?q?Dag-Erling_Sm=F8rgrav?=) To: Nick Cleaton <nick@cleaton.net> Cc: Chris Ryan <chrisryanemail@yahoo.com.au> Subject: Re: Attacks on ssh port Message-ID: <xzp1xgt5rv1.fsf@dwp.des.no> In-Reply-To: <20040923072912.GK5340@lt1.cleaton.net> (Nick Cleaton's message of "Thu, 23 Sep 2004 09:29:12 %2B0200") References: <20040923045229.GJ5340@lt1.cleaton.net> <20040923070809.14655.qmail@web51010.mail.yahoo.com> <20040923072912.GK5340@lt1.cleaton.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Nick Cleaton <nick@cleaton.net> writes: > I want access to my system from any IP address, so I've patched my > sshd so that a secret token is required to connect. Kinda like > using an obscure port, only more so :) > [...] > An alternative that avoids that would be to run something out of > inetd that reads the token and then execs sshd. Look up "replay attack" on google... DES --=20 Dag-Erling Sm=F8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xzp1xgt5rv1.fsf>