On Fri, Dec 4, 2015 at 5:57 PM, Marco Calistri
Hello,
I've already wrote about this in the past but then I never take any countermeasure nor direct actions.
Today I was monitoring my Tumbleweed /var/log/messages and I noticed some weird messages (here below I copy latest 30 lines of system log):
marco@linux-turion64:~> sudo cat /var/log/messages|grep ssh|tail -30
Somebody see something familiar and dangerous on these messages?
Pretty much all protocols that offer interactive auth are vulnerable to this sort of thing, in this case the only solution is to use public key authentication and disable password login. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org