[Info-vax] SSH on VAX - performance impact of break in attempts
Altivo Overo
tivo at altivo.org
Wed Aug 25 08:36:59 EDT 2010
On Wed, 25 Aug 2010 12:00:31 +0000, VAXman- wrote:
> Beacause only a fool would create a 'root' account or an 'administrator'
> account on VMS *AND* give it privies. If such a fool should exit, he or
> she deserves the wrath of whatever these password crackers can do! The
> 12 character username prohibits the 'administrator' account.
Some of them will try "operator" and "system" too. I stopped this
nonsense by blocking it at the firewall before it gets to the OpenVMS
system. SSH to that machine is possible only from specific originating
address ranges. That solution works well here, but of course isn't
practical for everyone. Non-dictionary passwords such as those created by
the password generator facility are good protection against this sort of
break-in, but won't keep them from trying.
More information about the Info-vax
mailing list