| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 11 Jul 2013 17:41:23 +0200
From: Jann Horn <jann+libev@...jh.net>
To: Curesec Research Team <crt@...esec.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: OpenSSH User Enumeration Time-Based Attack
On Wed, Jul 10, 2013 at 03:38:59PM +0200, Curesec Research Team wrote:
> By testing several OpenSSH installations we figured there is a delay of
> time when it comes to cracking users (not) existing on a system. A
> normal Brute-force-Attack tests for the correct user and password
> combination, usually without knowledge if the user on the system exists.
FYI, the openssh guys have known this for quite a while and they don't
treat it as an issue worth fixing. They don't want to introduce extra
anti-timing code just to prevent user enumeration from working.
You can also see a measurable difference when you try logging in with
random public RSA keys – around 100% difference over localhost, over the
internet it's much lower, but with a few attempts, you can still get good
data. Well, for systems that have password auth enabled, your approach seems
a lot more reliable.
By the way: If you can hog the CPU for seconds by sending a few kilobytes
of data, isn't that a DoS issue?
Download attachment "signature.asc" of type "application/pgp-signature" (837 bytes)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists