home bbs files messages ]

Just a sample of the Echomail archive

Cooperative anarchy at its finest, still active today. Darkrealms is the Zone 1 Hub.

   RBERRYPI      Support for the Raspberry Pi device      21,939 messages   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]

   Message 19,233 of 21,939   
   Theo to Chris Green   
   Re: It is now very nearly impossible to    
   29 Jan 24 13:33:38   
   
   INTL 3:770/1 3:770/3   
   REPLYADDR theom+news@chiark.greenend.org.uk   
   REPLYTO 3:770/3.0 UUCP   
   MSGID:  5ba15573   
   REPLY: <9nhk8k-333l1.ln1@esprimo.zbmc.eu> 8ea26f63   
   PID: SoupGate-Win32 v1.05   
   Chris Green  wrote:   
   > I've never understood how this can work.  If you type a wrong password   
   > to ssh it will wait several seconds before allowing you to try again.   
   > In addition it will throw you off completely after three failures and   
   > you'd have to start all over.  This is default ssh, no fail2ban or   
   > anything like that.   
      
   Bombard the machine with SSH connections.  There's no delay (aside from the   
   CPU overhead) for starting a new connection, so don't bother with the   
   timeout, just throw as many parallel connections at the machine as you can.   
   If you get rejected, just terminate the TCP connection and open a new one.   
   Or just wait out the timeout, with X thousand parallel connections it   
   doesn't waste any resources doing that.   
      
   Next, run it via a botnet so each connection comes from a different IP, so   
   avoiding fail2ban and similar firewall techniques.   
      
   Finally, parallelise over a lot of different victims.  Maybe you'll get   
   lucky at one victim, it's just a matter of probabilities.   
      
   > So how can a dictionary attack possibly work?  It would take years!   
      
   These are often not dictionary attacks in the sense of trying all the   
   dictionary words (including the d1ct10n4ry w0rds etc), but using lists of   
   known usernames/passwords.  Which you can be sure pi:raspberry is on.   
      
   Theo   
      
   --- SoupGate-Win32 v1.05   
    * Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)   
   SEEN-BY: 10/0 1 15/0 90/1 103/705 105/81 106/201 128/260 129/305 135/225   
   SEEN-BY: 153/757 7715 218/0 1 601 700 840 870 930 220/70 221/1 6 226/17   
   SEEN-BY: 226/30 100 227/114 229/110 112 113 200 206 307 317 400 426   
   SEEN-BY: 229/428 470 550 616 664 700 240/1120 266/512 267/800 282/1038   
   SEEN-BY: 291/111 292/854 301/1 113 812 310/31 320/219 322/757 335/364   
   SEEN-BY: 341/66 342/200 396/45 460/58 633/280 712/848 770/1 3 100   
   SEEN-BY: 770/330 340 772/210 220 230 5020/400 1042 5058/104 5075/35   
   PATH: 770/3 1 218/840 221/6 301/1 218/700 229/426   
      

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]


(c) 1994,  bbs@darkrealms.ca