Penetration Testing mailing list archives
RE: Some new SSH exploit script?
From: "Des Ward" <des.ward () ntlworld com>
Date: Tue, 6 Jun 2006 21:50:42 +0100
"I beg to differ with you -- running a standard service on a non-standard port is a bid for security through obscurity." Hmmm, Unless you have seen this not to be the case from experience, then I'm inclined to feel that changing network ports or the default local Admin accounts works. I have talked to Roger Grimes about this in the past, and he has seen through his honeypot network that this works. By all means prove it wrong through your experiences, but not by accepting a mantra that has it's basis on past attack vectors. Des ------------------------------------------------------------------------------ This List Sponsored by: Cenzic Concerned about Web Application Security? Why not go with the #1 solution - Cenzic, the only one to win the Analyst's Choice Award from eWeek. As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/news_events/wpappsec.php And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request () cenzic com for details. ------------------------------------------------------------------------------
Current thread:
- Re: Some new SSH exploit script?, (continued)
- Re: Some new SSH exploit script? shane (Jun 03)
- Re: Some new SSH exploit script? Michael Sierchio (Jun 05)
- Re: Some new SSH exploit script? Phil Frederick (Jun 05)
- Re: Some new SSH exploit script? Morning Wood (Jun 05)
- Re: Some new SSH exploit script? Chris Buechler (Jun 05)
- Re: Some new SSH exploit script? Michael Sierchio (Jun 05)
- Re: Some new SSH exploit script? Christine Kronberg (Jun 06)
- Re: Some new SSH exploit script? Erin Carroll (Jun 06)
- Re: Some new SSH exploit script? shane (Jun 03)
- RE: Some new SSH exploit script? Shain Singh (Jun 05)
- RE: Some new SSH exploit script? Shane Warner (Jun 06)
- RE: Some new SSH exploit script? Des Ward (Jun 06)
- Re: Some new SSH exploit script? James Kelly (Jun 09)
- Re: Some new SSH exploit script? Paul Robertson (Jun 08)
- Re: Re: Some new SSH exploit script? Jarrod Frates (Jun 05)
- Re: Some new SSH exploit script? Adam.Chesnutt (Jun 07)
- Re: Some new SSH exploit script? Larry Offley (Jun 06)