ssh brute force tool to crack root

A new SSH brute force tool attempts to crack into a box by brute forcing root through an listening SSH service. The tool even includes its own dictionary, where as most other tools of this type rely on a separate user-defined dictionary. Impressive. At any rate, this just further illustrates a security practice that should be used for all SSH Linux boxes: don’t allow root to log into SSH. Force a user account to be used, and then su to root.

One thought on “ssh brute force tool to crack root

Comments are closed.