Skip to main content

Search

Items tagged with: ssh

Hey! Let's talk about #SSH and #security!

If you've ever looked at SSH server logs you know what I'm about to say: Any SSH server connected to the public Internet is getting bombarded by constant attempts to log in. Not just a few of them. A *lot* of them. Sometimes even dozens per second. And this problem is not going away; it is, in fact, getting worse. And attackers' behavior is changing.

The graph attached to this post shows the number of attempted SSH logins per day to one of @cloudlab s clusters over a four-year period. It peaks at about 3.4 million login attempts per day.

This is part of a study we did on our production system, using logs of more than 640 million login attempts, covering more than 1,500 hosts on our side and observing more than 840 thousand incoming IP addresses.

A paper presenting our analysis and a new, highly effective means to block SSH brute force attacks ("Where The Wild Things Are: Brute-Force SSH Attacks In The Wild And How To Stop Them") will be presented next week at #NSDI24 by @sachindhke . The full paper is at https://www.flux.utah.edu/paper/singh-nsdi24

Let's dive in. 🧵

Where The Wild Things Are: Brute-Force SSH Attacks In The Wild And How To Stop Them : Flux Research Group

www.flux.utah.edu
#security #ssh #nsdi24 @CloudLab @Sachin

#xz #ssh #exploit #poc
https://github.com/amlweems/xzbot

GitHub - amlweems/xzbot: notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)

notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094) - amlweems/xzbot
GitHub
#xz #ssh #exploit #poc

Content warning: 🔥 Habr.ru удаление статей о обходе блокировок 🔥

#linux #debian #telegram #mozilla #security #server #VPN #Tor #OpenBSD #dns #p2p #network #git #unix #ubuntu #wireguard #http #https #Internet #openvpn #backup #info #articles #private #ssl #i2p #ssh #proxy #firewall #mega #router #p2panda #yggdrasil #habrahabr #ua #pptp #i2ray #ikev2 #xray #v2rayxs #v2ray #roskomnadzor #блокировки #v2rayng #shadowsocks #i2pd #nekobox #обходблокировок #хабр #mikrotik #ipsec #softether #ru #rutracker #outline #openxray #l2tp #softethervpn #habr #mesh #4pda #amnezia #pages #valdikss #cloak #peervpn #v2rayn @⚛️Revertron :straight: @Rоссийская🐻Fедерация @ru

We have just issued the first #release of #sshd-openpgp-auth and #ssh-openpgp-auth.

Using this server and client-side tooling it is possible to manage the #authentication of #SSH host keys with the help of an #OpenPGP certificate as trust anchor.

https://crates.io/crates/sshd-openpgp-auth

https://crates.io/crates/ssh-openpgp-auth

Many thanks to @wiktor for the great collaboration and #NLnet / #NGIAssure for funding this work!

#DNS #KeyOxide #KnownHosts #OpenSSH #Rustlang #Software #WebKeyDirectory #WebOfTrust #WKD #WoT

#openpgp #keyoxide #software #release #nlnet #dns #RustLang #authentication #ssh #openssh #NGIAssure #wot #sshd #knownhosts #webkeydirectory #weboftrust #wkd @Wiktor Kwapisiewicz

The latest issue of this newsletter, to which I subscribe, gives a clear summary of the recently disclosed Secure Shell (ssh) security vulnerability.
https://www.feistyduck.com/newsletter/issue_108_ssh_protocol_vulnerable_to_mitm_attack
#security #ssh

SSH Protocol Vulnerable to MITM Attack | Feisty Duck

www.feistyduck.com
#security #ssh

Oops! 😅 Github accidentally committed their on SSH private key to a public github repo. They rightly have changed the keys, so you'll get bit scary “WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!” messages.

https://github.blog/2023-03-23-we-updated-our-rsa-ssh-host-key/
#ssh #github #devoops

We updated our RSA SSH host key | The GitHub Blog

At approximately 05:00 UTC on March 24, out of an abundance of caution, we replaced our RSA SSH host key used to secure Git operations for GitHub.com.
Mike Hanley (GitHub)
#github #ssh #devoops