Full Disclosure mailing list archives

Re: SSHatter 0.6

From: ghost <ghosts () gmail com>
Date: Sun, 7 Oct 2007 15:44:04 -0700

Professionals don't care about finding elegant ways into systems,
they're there to GET into systems. Rethink your assessment.

On 10/7/07, phioust <phioust () gmail com> wrote:

Who does a tool like this help?

I would hope that the professionals on this list would not rely on weak
password combinations for access into systems.
That leads me to believe that this will only help script kiddies and flood
my ssh logs with more root:root and mysql:mysql failed ssh attempts.

On top of that your idea is not original all you did was rip the sshbrute of
the great tal0n [1]

I would hope for now on that you do not flood the list with such script
kiddie tools and reserve them instead for the milw0rm crowd

[1] http://www.encyclopediadramatica.com/Tal0n

_______________________________________________
Full-Disclosure - We believe in it.
Charter:
http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

SSHatter 0.6 Tim Brown (Oct 06)
- <Possible follow-ups>
- Re: SSHatter 0.6 full-disclosure (Oct 07)
- Re: SSHatter 0.6 phioust (Oct 07)
  - Re: SSHatter 0.6 ghost (Oct 07)
  - Re: SSHatter 0.6 Anders B Jansson (Oct 07)