Poor SSH Configuration Missing From Off-Chain Attacks #11

bonedaddy · 2022-06-16T20:47:34Z

Is your feature request related to a problem? Please describe.
Backend servers are often used for things like compounders, apis, oracles, etc.. This requires remote access, usually through SSH. Default SSH configurations are dogshit, often permitting root access with password enable ssh.

Describe the solution you'd like

Add SSH as an off-chain attack

Describe alternatives you've considered
Telnet? /s

bonedaddy mentioned this issue Jun 16, 2022

Lack Of Security Guides / Recommendations For Off-Chain Attacks #12

Open

sambacha added Document Attack Pattern Document an Attack Pattern not listed Example Attack Pattern code for an existing attack pattern help wanted Extra attention is needed documentation Improvements or additions to documentation labels Jul 17, 2022

sambacha self-assigned this Jul 17, 2022

sambacha added this to Manifold Public Jul 17, 2022

sambacha moved this to 🔀 Backlog in Manifold Public Jul 17, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Poor SSH Configuration Missing From Off-Chain Attacks #11

Poor SSH Configuration Missing From Off-Chain Attacks #11

bonedaddy commented Jun 16, 2022

Poor SSH Configuration Missing From Off-Chain Attacks #11

Poor SSH Configuration Missing From Off-Chain Attacks #11

Comments

bonedaddy commented Jun 16, 2022