Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Slow Bruteforce Botnet(s) May Be Learning

Posted by kdawson on from the knock-who's-there-knock dept.

badger.foo writes "We've seen stories about the slow bruteforcers — we've discussed it here — and based on the data, my colleague Egil Möller was the first to suggest that since we know the attempts are coordinated, it is not too far-fetched to assume that the controlling system measures the rates of success for each of the chosen targets and allocates resources accordingly. (The probes of my systems have slowed in the last month.) If Egil's assumption is right, we are seeing the bad guys adapting. And they're avoiding OpenBSD machines." For fans of raw data, here are all the log entries (3MB) that badger.foo has collected since noticing the slow bruteforce attacks.

7 of 327 comments (clear)

  1. Re:Solution: Public Key Auth by Hojima · · Score: 5, Funny

    The other solution is to use asshole seeking missiles on the botnets. Of course it would probably end up leading astray from the pricks with the checklist that always responds to peoples' solutions to spam.

    --
    Help fight spam
  2. Re:Solution: Public Key Auth by Anonymous Coward · · Score: 5, Funny

    That wont work and Ill tell you why:

    1)Those launching the missiles also have assholes.
    2)Knives would be funner
    3)Barney sucks
    4)People like checklists

  3. Next Slashdot headlines... by Anonymous Coward · · Score: 5, Funny
    • The Slow Bruteforce Botnet(s) may be learning
    • The Slow Bruteforce Botnet(s) are learning at an exponential rate
    • The Slow^H^H^H^HFast Bruteforce Botnet(s) become self-aware at 2:19 AM, August 29
    • Botnet masters try to pull plug, botnets fight back with DDoSur8ghgw43899 NO CARRIER
  4. Re:AI by Fluffeh · · Score: 5, Funny

    Because computers are widely known for their common sense?

    It's like saying to a robot "Can you watch this lamb in the oven?" and they do. They bloody watch it burning for three hours.

    Ahh thank you Red Dwarf, even historically, you were so accurate of the future...

    --
    Moved to http://soylentnews.org/. You are invited to join us too!
  5. Re:Solution: Public Key Auth by techno-vampire · · Score: 5, Funny
    It really makes me wonder where they're getting them.

    One way to get them is to set up some sort of site that logically requires you to log in, let it become popular, then harvest the password file and use it in your attacks. Be sure to make the site geeky, though, to get good passwords and give it an attention-getting name. Something like "Slashdot."

    --
    Good, inexpensive web hosting
  6. Re:Solution: Public Key Auth by chaim79 · · Score: 5, Funny

    Yah but two anecdote's don't make a parable... right?

    --
    DEMETRIUS: Villain, what hast thou done?
    AARON: Villain, I have done thy mother.
    Shakespeare invents 'your mom'
  7. Re:Solution: Public Key Auth by ion.simon.c · · Score: 5, Funny

    You seem to be a chatbot. I'm not sure how you got onto slashdot, but welcome!