July 17th, 2005, 08:10 AM
Has anyone seen and/or used SSH Faker yet? It seems like a pretty cool idea... Reminds me a lot of the Cisco Lock & Key firewall... SSH won't allow you to connect directly (works with the ssh fake program and hosts.deny) but you can telnet to 22 and enter a password, then you'll be allowed to connect using SSH...
I've seen more and more reports of brute force attacks against SSH... perhaps this is the solution...
I'd love to hear feedback if anyone tries it and if I get around to installing it and testing it out, I'll let you know what I find out.
Check it out @ http://www.pkts.ca/ssh-faker.shtml
IT Blog: .:Computer Defense:.
(Pronounced Pinched): Acronym - Point 'n Click Hacked. As in: "That website was pinched" or "The skiddie pinched my computer because I forgot to patch".
July 17th, 2005, 05:40 PM
I have and they are fun....I would call them a brother to the port knocker....Definitely are usefull in most situations. However, it would be easily engineered to create a worm to telnet/ssh combo on the defaults, one up/down.....Just time to tell
July 19th, 2005, 01:25 AM
Great idea, however as sphraice said, I don't think it will be long before virus writers become smart to this (does that make sense, ah well I know what I mean)
I\'m Dying To Find Out The Hard Way