home bbs files messages ]

Just a sample of the Echomail archive

Cooperative anarchy at its finest, still active today. Darkrealms is the Zone 1 Hub.

   RBERRYPI      Support for the Raspberry Pi device      21,939 messages   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]

   Message 19,234 of 21,939   
   The Natural Philosopher to Theo   
   Re: It is now very nearly impossible to    
   29 Jan 24 13:42:16   
   
   INTL 3:770/1 3:770/3   
   REPLYADDR tnp@invalid.invalid   
   REPLYTO 3:770/3.0 UUCP   
   MSGID:  c523b2bc   
   REPLY:  5ba15573   
   PID: SoupGate-Win32 v1.05   
   On 29/01/2024 13:33, Theo wrote:   
   > Chris Green  wrote:   
   >> I've never understood how this can work.  If you type a wrong password   
   >> to ssh it will wait several seconds before allowing you to try again.   
   >> In addition it will throw you off completely after three failures and   
   >> you'd have to start all over.  This is default ssh, no fail2ban or   
   >> anything like that.   
   >   
   > Bombard the machine with SSH connections.  There's no delay (aside from the   
   > CPU overhead) for starting a new connection, so don't bother with the   
   > timeout, just throw as many parallel connections at the machine as you can.   
   > If you get rejected, just terminate the TCP connection and open a new one.   
   > Or just wait out the timeout, with X thousand parallel connections it   
   > doesn't waste any resources doing that.   
   >   
   > Next, run it via a botnet so each connection comes from a different IP, so   
   > avoiding fail2ban and similar firewall techniques.   
   >   
   > Finally, parallelise over a lot of different victims.  Maybe you'll get   
   > lucky at one victim, it's just a matter of probabilities.   
   >   
   >> So how can a dictionary attack possibly work?  It would take years!   
   >   
   > These are often not dictionary attacks in the sense of trying all the   
   > dictionary words (including the d1ct10n4ry w0rds etc), but using lists of   
   > known usernames/passwords.  Which you can be sure pi:raspberry is on.   
   >   
   But grumpyOldSod:suckMyDick.57 probably is not...   
      
   > Theo   
      
   --   
   "First, find out who are the people you can not criticise. They are your   
   oppressors."   
         - George Orwell   
      
   --- SoupGate-Win32 v1.05   
    * Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)   
   SEEN-BY: 10/0 1 15/0 90/1 103/705 105/81 106/201 128/260 129/305 135/225   
   SEEN-BY: 153/757 7715 218/0 1 601 700 840 870 930 220/70 221/1 6 226/17   
   SEEN-BY: 226/30 100 227/114 229/110 112 113 200 206 307 317 400 426   
   SEEN-BY: 229/428 470 550 616 664 700 240/1120 266/512 267/800 282/1038   
   SEEN-BY: 291/111 292/854 301/1 113 812 310/31 320/219 322/757 335/364   
   SEEN-BY: 341/66 342/200 396/45 460/58 633/280 712/848 770/1 3 100   
   SEEN-BY: 770/330 340 772/210 220 230 5020/400 1042 5058/104 5075/35   
   PATH: 770/3 1 218/840 221/6 301/1 218/700 229/426   
      

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]


(c) 1994,  bbs@darkrealms.ca