Frackin script kiddies!!
Richard Pieri
richard.pieri-Re5JQEeQqe8AvxtiuMwx3w at public.gmane.org
Tue Aug 3 12:06:13 EDT 2010
On Aug 3, 2010, at 12:27 AM, Jarod Wilson wrote:
>
> They can launch the same brute force attack and/or go for exploits
> against ssh. Or an ipsec vpn. Or anything public-facing. But
No, they can't, not with SSH. A brute-force attack cannot work without the correct half of the key pair. There are other potential avenues of attack against SSH but they are harder than SSL because SSH is auth + encryption while SSL is just encryption, unless you use X.509 authentication.
> seriously, who is going to expend the effort brute-force attacking my
> mythtv box to delete some recordings?
"Whoever broke into David Kramer's MythTV box" is a good start to that list.
--Rich P.
More information about the Discuss
mailing list