Slashdot Mirror


Sloppy Linux Admins Enable Slow Brute-Force Attacks

badger.foo passes on the report of Peter N. M. Hansteen that a third round of low-intensity, distributed brute-force attacks is now in progress — we earlier discussed the first and second rounds — and that sloppy admin practice on Linux systems is the main enabler. As before, the article links to log data (this time 770 apparently already compromised Linux hosts are involved), and further references. "The fact that your rig runs Linux does not mean you're home free. You need to keep paying attention. When your spam washer has been hijacked and tries to break into other people's systems, you urgently need to get your act together, right now."

8 of 391 comments (clear)

  1. Re:Outward facing systems ... by marcansoft · · Score: 4, Funny

    Or you could just not use weak passwords.

  2. Re:learn to.... by Nested · · Score: 5, Funny

    Obviously it's only relevant by outing parent as a random Windows admin.

  3. Re:A measely 6k attempts over 4 days? Who cares? by ScrewMaster · · Score: 4, Funny

    Because it involves Linux boxes, and nothing gets the /. crowd riled up more than an assertion that Linux suffers from drawbacks. :P You're right, though, in that good security practices should be just as effective in this case - which is why the title of the article is "Sloppy Linux Admins Enable Slow Bruteforce Attacks".

    Yes, as opposed to "Typical Windows Admins Enable Rapid Bruteforce Attacks"

    --
    The higher the technology, the sharper that two-edged sword.
  4. Re:A REALLY SLOW attack ... by ArsonSmith · · Score: 4, Funny

    I run windows so I'm safe.

    --
    Paying taxes to buy civilization is like paying a hooker to buy love.
  5. Re:Ask Slashdot by Slashcrap · · Score: 3, Funny

    She then turned back around and asked me if she had checked my ID. I gave her a hard time because in this system I am assumed to be untrustworthy until she says otherwise so she shouldn't trust anything I tell her.

    Oh, how I laughed as her collegues repeatedly probed my anal cavity with their rough, unlubricated hands.

  6. Re:Outward facing systems ... by AVee · · Score: 2, Funny

    Why do people assume that "the lan" is some magical secure place?

    Because I don't let just anybody into my home and I don't have a wireless network either? And somehow I doubt somebody will break into my house just to hijack another linux box, but when they do they'll probably access the box directly instead of over the network.

  7. Re:Ask Slashdot by Linker3000 · · Score: 3, Funny

    "She then turned back around and asked me if she had checked my ID. I gave her a hard time because in this system I am assumed to be untrustworthy until she says otherwise so she shouldn't trust anything..."

    So how did the 'totally picked you at random' body cavity search go then?

    --
    AT&ROFLMAO
  8. Re:Outward facing systems ... by Lumpy · · Score: 3, Funny

    "DING DONG"

    you: answer door; Hello?
    guy: Hi I'm from linux, I'm here to install a critical patch.
    you: huh? from where?
    guy: linux, linus sent me, I need to patch your computers..
    you: LINUS? REALLY?
    guy: yes, here is my official linux ID, and we have a nice CD full of new unreleased software for your trouble...

    Damn linux hackers are getting better and bolder every day.

    --
    Do not look at laser with remaining good eye.