break-in attempt in my machine
No Spam
mailinglists at high5.alioth.uberspace.de
Fri Sep 2 19:21:00 UTC 2016
On 16-09-02 19:25:29, Chris Green wrote:
> On Fri, Sep 02, 2016 at 06:59:29PM +0200, J. L. wrote:
> > On 02.09.2016 16:57, Volker Wysk wrote:
> > > Am Sonntag, 28. August 2016, 11:39:07 CEST schrieb Karl Auer:
> > >> By the way, anyone that has ssh access open to the world MUST take
> > >> extra precautions. At an absolute minimum, any account that can log in
> > >> via ssh MUST have a VERY GOOD PASSWORD - twenty or thirty random
> > >> characters including numbers, punctuation and both cases. Otherwise you
> > >> WILL get hacked.
> > >
> > > I have a 9-letter fantasy word as password. Something like "schwurbelfu". Just
> > > lower case letters. So this is insecure? I doubt it could be cracked by
> > > trying.
> >
> > Of course You could call me paranoid but passwords shorter than
> > _at_least_ 20 random characters should be considered "obsolete" in these
> > times (since among lots of other revelations the publications of Edward
> > Snowden).
> >
> Passwords are only 'easy to break' if one has access to the system
> where they are stored. It's not practical to brute force even a
> fairly trivial password remotely.
don't forget :ssh means access to the system
Greets
J
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20160902/b65789a2/attachment.sig>
More information about the ubuntu-users
mailing list