New POP3 vulnerability?
Bill McGonigle
bill at bfccomputing.com
Wed Feb 21 14:07:39 EST 2007
On Feb 21, 2007, at 09:17, Neil Joseph Schelly wrote:
> I've seen password guessing attacks on my POP3 server,
> akin to the obviously common SSH password guessing stuff (using
> usernames
> like root, admin, etc)
Somebody told me once that there are script-kiddie scripts that look
like they're doing password guessing, but that's just camouflage for
buffer overflow attacks on older versions of OpenSSH. The idea is to
fill up logwatch with as many failures as possible to lull the
sysadmin into a false sense of security.
This is purely secondhand (or is it third-hand now?), but something
to think about.
-Bill
-----
Bill McGonigle, Owner Work: 603.448.4440
BFC Computing, LLC Home: 603.448.1668
bill at bfccomputing.com Cell: 603.252.2606
http://www.bfccomputing.com/ Page: 603.442.1833
New Blog: http://blog.bfccomputing.com/
VCard: http://bfccomputing.com/vcard/bill.vcf
More information about the gnhlug-discuss
mailing list