[TriLUG] ssh question

ac via TriLUG trilug at trilug.org
Mon Oct 24 12:30:43 EDT 2016 

mostly tho "people" hijack to rent out... like this past dns ddos imho, was a rental...

an open ssh on a Pi that is not inspected often, sitting on good
bandwith, may even make a good bot controller...

always secure everything connected to the public network, specially if
it is easy to do / same effort, as in this case...

2c

Andre

On Mon, 24 Oct 2016 12:22:59 -0400 (EDT)
William Sutton via TriLUG <trilug at trilug.org> wrote:

> people also hijack for botnets.  they use open machines as jumping
> off points to target other systems so they can't be (easily) traced.
> 
> and just because you don't think you've been hacked, doesn't mean you 
> haven't been.  Ask OPM.  Or Target.  Or the DNC.  Or...
> 
> Go read Cliff Stoll's book _The Cuckoo's_Egg.
> 
> At the risk of soundy like a grumpy greybeard, this is one more
> reason I don't want an IoT.
> 
> William Sutton
> 
> On Mon, 24 Oct 2016, Brian via TriLUG wrote:
> 
> > On 10/24/2016 12:08 PM, Grawburg via TriLUG wrote:
> >> Here's why security is not an issue.
> >> 1. The remote Pi (2 floors below) will be accessed for less than
> >> 10 minutes 
> > and then only a couple of times a month.
> >
> > Invaders need less than a few seconds to compromise an insecure
> > machine.
> >
> >> 2. There is no data anyone would want to view or steal even if
> >> they could 
> > get into the network.
> >
> > Theft isn't the only bad thing that hackers do.  Profit is not the
> > only motive.  Vandals gonna vandalize; how badly would your day be
> > ruined to come to work and find that every hard drive on every
> > computer that happened to be on overnight had been wiped?
> >
> >> 3. If we've not had anyone hack into our network since I've been
> >> here (8 
> > years) I don't think they're going to.
> >
> > There's always a first time.
> >
> > I recommend configuring the remote Pi's firewall, at a minimum, to
> > only accept originating connections from the client Pi.
> >
> > Cheers,
> > -B
> >
> >
> >
> > -- 
> > This message was sent to: William <william at trilug.org>
> > To unsubscribe, send a blank message to trilug-leave at trilug.org
> > from that address.
> > TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> > Unsubscribe or edit options on the web	: 
> > http://www.trilug.org/mailman/options/trilug/william%40trilug.org
> > Welcome to TriLUG: http://trilug.org/welcome

More information about the TriLUG mailing list