Royce Williams on Nostr: Question about the OpenSSH vuln: Do all the attempts have to come from a single ...
Question about the OpenSSH vuln:
Do all the attempts have to come from a single connection?
Or could attack be distributed across a fleet of source IPs (impacting effectiveness of fail2ban, etc.)
#RegreSSHion #OpenSSH #cve_2024_6387
Published at
2024-07-02 20:45:03Event JSON
{
"id": "bbee4b41556cb6005881a400ed9f0f65bfdf83c2d10c4c6abd073cf3d101734d",
"pubkey": "fd78ea493e466e5403543ba50475e8acc79157ea3bab423b53f780a89c92423e",
"created_at": 1719953103,
"kind": 1,
"tags": [
[
"t",
"regresshion"
],
[
"t",
"openssh"
],
[
"t",
"cve_2024_6387"
],
[
"proxy",
"https://infosec.exchange/users/tychotithonus/statuses/112718846608445268",
"activitypub"
]
],
"content": "Question about the OpenSSH vuln: \n\nDo all the attempts have to come from a single connection?\n\nOr could attack be distributed across a fleet of source IPs (impacting effectiveness of fail2ban, etc.)\n\n#RegreSSHion #OpenSSH #cve_2024_6387",
"sig": "ca683b415ac7fe98a6a44ab1c495097a74a7ad72e986ba1719bbdbb48d1b95fcb9dfaa6a5d128cb7022b05ed1a4a800d6c5c78c4d0bd108d80c8572caf9432e2"
}
