[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FD] OpenSSH keyboard-interactive authentication brute force vulnerability (MaxAuthTries bypass)

To: "fulldisclosure@xxxxxxxxxxxx" <fulldisclosure@xxxxxxxxxxxx>
Subject: Re: [FD] OpenSSH keyboard-interactive authentication brute force vulnerability (MaxAuthTries bypass)
From: Reed Loden <reed@xxxxxxxxxxxxx>
Date: Sat, 18 Jul 2015 14:23:40 -0700

On Friday, July 17, 2015, <devel@xxxxxxxxxxxxxx> wrote:

> Do you know if this is still affected if you have fail2ban in place.
> Fail2ban uses the auth logs to monitor failed password attempts. I
> assume that the auth log is still updated even if x number of attempts
> is allowed. Thanks

http://www.reddit.com/r/netsec/comments/3dnzcq/openssh_keyboardinteractive_authentication_brute/ct726ni
 goes over this question pretty well, so as not to rehash everything.

~reed

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Follow-Ups:
- Re: [FD] OpenSSH keyboard-interactive authentication brute force vulnerability (MaxAuthTries bypass)
  - From: Dirk-Willem van Gulik

References:
- [FD] OpenSSH keyboard-interactive authentication brute force vulnerability (MaxAuthTries bypass)
  - From: king cope
- Re: [FD] OpenSSH keyboard-interactive authentication brute force vulnerability (MaxAuthTries bypass)
  - From: devel

Prev by Date: [FD] Information Exposure Vulnerability in WordPress Mobile Pack Wordpress Plugin v2.1.2 and below
Next by Date: [FD] Airdroid iOS, Android & Win 3.1.3 - Persistent Vulnerability
Previous by thread: Re: [FD] OpenSSH keyboard-interactive authentication brute force vulnerability (MaxAuthTries bypass)
Next by thread: Re: [FD] OpenSSH keyboard-interactive authentication brute force vulnerability (MaxAuthTries bypass)
Index(es):
- Date
- Thread