Re: Some new SSH exploit script?

From: silentw (silentw@gmail.com)
Date: Wed Jun 07 2006 - 00:26:58 EDT

• Next message: Adam.Chesnutt: "Re: Some new SSH exploit script?"
• Previous message: mikejones@rapper.com: "Re: Enterprise Trainaing Programs"
• In reply to: Michael Sierchio: "RE: Some new SSH exploit script?"
• Next in thread: Adam.Chesnutt: "Re: Some new SSH exploit script?"
• Reply: Adam.Chesnutt: "Re: Some new SSH exploit script?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

> Running a service on a non-standard port yields zero increase in
> security. That was my point.

I completely disagree for several reasons.

There has been much talk about the number of connections on port 22.
thousands of random connections that just waste your time. If you dont
have a guessable password why do you care ? reasurces.

1) It wastes your resorces. If your logs arn't full of usless crap you
have more time, more money, more hardware that you can better spend
elseware on things that will actually help you.

2) Security through obscurity is a legitimate part of defense in
depth. (in this case) If you keep your services up to date, a
non-standard port could save you from a 0day attack / worm / n00b.
that is an increase in security.

It really (for me, anyway) comes down to reasources - if you can cut
the junk in your logs by 90% just by changing a port, it is worth
considering. Anyone who has working in a large environment will know
exactly what I mean.

------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to rise,
you need to proactively protect your applications from hackers. Cenzic has the
most comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go with a
managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request@cenzic.com for details.
------------------------------------------------------------------------------

• Next message: Adam.Chesnutt: "Re: Some new SSH exploit script?"
• Previous message: mikejones@rapper.com: "Re: Enterprise Trainaing Programs"
• In reply to: Michael Sierchio: "RE: Some new SSH exploit script?"
• Next in thread: Adam.Chesnutt: "Re: Some new SSH exploit script?"
• Reply: Adam.Chesnutt: "Re: Some new SSH exploit script?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:56:03 EDT