[tor-relays] Intrusion Prevention System Software - Snort or Suricata

Thu Oct 6 03:16:00 UTC 2016

On Wed, 05 Oct 2016 14:52:53 +0000, Mirimir wrote:
...
> >> no? Why should "... ssh foo at w.x.y.z ... ssh bar at w.x.y.z ... ssh
> >> baz at w.x.y.z ..." get through, if it destroys exits? Maybe someone could
...
> >   for i in subdir/*; do ssh host mkdir -p "$i"; done
> > 
> > with an ssh-agent would look pretty exactly the same to the exit node.
> 
> OK, so I left out the "Permission denied, please try again." bits :)

The exit node doesn't see that - that's the point of ssh. It can
at best look at the session length and timing and infer flakily
from that.

Andreas

-- 
"Totally trivial. Famous last words."
From: Linus Torvalds <torvalds@*.org>
Date: Fri, 22 Jan 2010 07:29:21 -0800