From: David Ball (lostinvietnam@hotmail.com)
Date: Wed May 31 2006 - 21:57:24 EDT
If my memory serves me correct this same question was answered on
this list back in Oct 2005. Search for "ssh brute force"
site:securityfocus.com and you might be able to dig up the thread.
Otherwise you might get lucky and the original poster may reply.
"Unix is user-friendly. It's just very selective about who its
friends are."
>>"foringer@gmail.com" <foringer@gmail.com>
>>No Phone Info Available
>>05/22/2006 03:14 AM
>>
>>To
>>pen-test@securityfocus.com
>>cc
>>
>>Subject
>>Restoring ssh session
>>
>>Hello list members!!!
>>For the purpose of security my few FreeBSD servers with SSH daemons on
>>default ports, I need to collect passwords, which
>>intruders uses for breaking attempts. In my log files, I can only
>>monitor invalid names, but no passwords. So, is there any
>>possibility to log passwords which intruders uses in there evil hacks?
>>
>>Best regards, Nik
>>
>>------------------------------------------------------------------------------
>>This List Sponsored by: Cenzic
>>
>>Concerned about Web Application Security?
>>Why not go with the #1 solution - Cenzic, the only one to win the
>>Analyst's
>>Choice Award from eWeek. As attacks through web applications continue to
>>rise,
>>you need to proactively protect your applications from hackers. Cenzic has
>>the
>>most comprehensive solutions to meet your application security penetration
>>
>>testing and vulnerability management needs. You have an option to go with
>>a
>>managed service (Cenzic ClickToSecure) or an enterprise software
>>(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
>>help you: http://www.cenzic.com/news_events/wpappsec.php
>>And, now for a limited time we can do a FREE audit for you to confirm your
>>
>>results from other product. Contact us at request@cenzic.com for details.
>>------------------------------------------------------------------------------
>>
>
>_________________________________________________________________
>Learn English via Shopping Game, FREE!
>http://www.linguaphonenet.com/BannerTrack.asp?EMSCode=MSN06-03ETFJ-0211E
>
_________________________________________________________________
Get 10Mb extra storage for MSN Hotmail. Subscribe Now!
http://join.msn.com/?pgmarket=en-hk
------------------------------------------------------------------------------
This List Sponsored by: Cenzic
Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to rise,
you need to proactively protect your applications from hackers. Cenzic has the
most comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go with a
managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request@cenzic.com for details.
------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:56:01 EDT