Follow

"holy balls. this is incredible

the [libssh] vulnerability literally works like this:

me: "can i log in?"

server: "no. you need a password."

me: "hacker voice i'm in"

server: "login successful. you're in""

twitter.com/FioraAeterna/statu

@theartguy @djsundog @noelle Nonono it's more a Jedi Mind Trick, isn't it?:

Client:
SSH2_MSG_USERAUTH_REQUEST?

Server:
SSH2_MSG_USERAUTH_FAILURE.

Client *waves three fingers across*:
SSH2_MSG_USERAUTH_SUCCESS

Server *slowly*:
SSH2_MSG_USERAUTH_SUCCESS

@noelle when i saw that post i made a funny noise that everyone around me heard, rofl

@noelle

libssh: password please

hacker: c'mon man, we cool bro

libssh: ok, fine, but just this one time.

@noelle
Its actually worse. They don't even need to ask for a password. Its the equivalent of "it's alright, they know me here."

@noelle SSH: the sound you make to the server during authentication as you slip on by.

Sign in to participate in the conversation
Elekk: Mastodon for Gamers

Elekk is a Mastodon instance by gamers, for gamers. Games of any type are welcome here - computer, video, tabletop, etc. - as well as game development of any kind. GAMERGATE AND THE ALT-RIGHT ARE NOT WELCOME HERE. Elekk is not hosted in the EU and does not recognize the authority of the EU to govern the internet.