[Info-vax] SSH on VAX - performance impact of break in attempts
JF Mezei
jfmezei.spamnot at vaxination.ca
Wed Aug 25 22:47:53 EDT 2010
Steven Schweda wrote:
> All the "Administrato" attacks I can remember involved FTP.
> The FTP server log shows "Administrator":
Because FTP was the only one generating log entries showing which
username was being attempted. Don't assume they weren't trying other
protocols. POP is also common for dictionary attacks.
What I find interesting is that telnet is not a common attack because so
many sites have disabled it. It is in fact less dangerous than leaving
SSH open.
More information about the Info-vax
mailing list