INTL 3:770/1 3:770/3   
   REPLYADDR tnp@invalid.invalid   
   REPLYTO 3:770/3.0 UUCP   
   MSGID:  91ffc432   
   REPLY:  dd820f4d   
   PID: SoupGate-Win32 v1.05   
   On 29/01/2024 19:26, Chris Green wrote:   
   > Theo  wrote:   
   >> Chris Green  wrote:   
   >>> I've never understood how this can work.  If you type a wrong password   
   >>> to ssh it will wait several seconds before allowing you to try again.   
   >>> In addition it will throw you off completely after three failures and   
   >>> you'd have to start all over.  This is default ssh, no fail2ban or   
   >>> anything like that.   
   >>   
   >> Bombard the machine with SSH connections.  There's no delay (aside from the   
   >> CPU overhead) for starting a new connection, so don't bother with the   
   >> timeout, just throw as many parallel connections at the machine as you can.   
   >> If you get rejected, just terminate the TCP connection and open a new one.   
   >> Or just wait out the timeout, with X thousand parallel connections it   
   >> doesn't waste any resources doing that.   
   >>   
   >> Next, run it via a botnet so each connection comes from a different IP, so   
   >> avoiding fail2ban and similar firewall techniques.   
   >>   
   >> Finally, parallelise over a lot of different victims.  Maybe you'll get   
   >> lucky at one victim, it's just a matter of probabilities.   
   >>   
   >>> So how can a dictionary attack possibly work?  It would take years!   
   >>   
   >> These are often not dictionary attacks in the sense of trying all the   
   >> dictionary words (including the d1ct10n4ry w0rds etc), but using lists of   
   >> known usernames/passwords.  Which you can be sure pi:raspberry is on.   
   >>   
   > OK, so it may be slightly more possible than I was surmising.  However   
   > a Raspberry Pi isn't that fast, it'll run out of puff quite rapidly!   
   > My B+ takes quite a while just to log me in with password   
   > authentication! :-)   
   >   
   Indeed. My B is fast because it has SSD, but the Zero takes an age.   
   --   
   "I am inclined to tell the truth and dislike people who lie consistently.   
   This makes me unfit for the company of people of a Left persuasion, and   
   all women"   
      
   --- SoupGate-Win32 v1.05   
    * Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)   
   SEEN-BY: 10/0 1 15/0 90/1 103/705 105/81 106/201 128/260 129/305 135/225   
   SEEN-BY: 153/757 7715 218/0 1 601 700 840 870 930 220/70 221/1 6 226/17   
   SEEN-BY: 226/30 100 227/114 229/110 112 113 200 206 307 317 400 426   
   SEEN-BY: 229/428 470 550 616 664 700 240/1120 266/512 267/800 282/1038   
   SEEN-BY: 291/111 292/854 301/1 113 812 310/31 320/219 322/757 335/364   
   SEEN-BY: 341/66 342/200 396/45 460/58 633/280 712/848 770/1 3 100   
   SEEN-BY: 770/330 340 772/210 220 230 5020/400 1042 5058/104 5075/35   
   PATH: 770/3 1 218/840 221/6 301/1 218/700 229/426