Search found 2 matches
- 08 Aug 2013, 20:41
- Forum: General Discussion (csf)
- Topic: Prevent ssh connection slot DoS: CVE-2010-5107
- Replies: 1
- Views: 3167
Re: Prevent ssh connection slot DoS: CVE-2010-5107
Actually Debian shows that this vulnerability was "fixed" in the latest 5.5 version on squeeze.. Am still curious though if a timeout on login command counts as a failed login attempt..
- 08 Aug 2013, 18:35
- Forum: General Discussion (csf)
- Topic: Prevent ssh connection slot DoS: CVE-2010-5107
- Replies: 1
- Views: 3167
Prevent ssh connection slot DoS: CVE-2010-5107
Is there some way that CSF can be used to effectively prevent the attack described in CVE-2010-5107? I'm not overly concerned about this issue (it *has* existed for 11 years, after-all) but the third-party company that does security scans for PCI compliance wants it resolved. The suggested solution ...