Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Optimum Attack Rate For SSH Bruteforce? Once Every Ten Seconds

Posted by Unknown on from the and-that's-why-you-use-denyhosts dept.

badger.foo writes "Remember the glacially slow Hail Mary Cloud SSH bruteforcers? They're doing speedup tweaks and are preparing a comeback, some preliminary data reported by Peter Hansteen appear to indicate. The optimum rate of connections seems to be 1 per ten seconds, smack in the middle of the 'probably human' interval."

2 of 167 comments (clear)

  1. Re:Isn't that useless? by girlintraining · · Score: 3, Funny

    So unless you're allowing usernames such as "root" or "admin" or "administrator" AND using dictionary passwords wouldn't this fail? And be obvious in the logs?

    You're thinking... this makes you a bad reference model for the average user.

    --
    #fuckbeta #iamslashdot #dicemustdie
  2. Re:Passwords are for philistines by Brucelet · · Score: 4, Funny

    It is if I break into your house and brute-force you to hand it over