file-limit-max-auth-attempts: Limit Maximum SSH Authentication Attempts

日期: 2025-08-01 | 影响软件: file | POC: 已公开

漏洞描述

Limiting maximum SSH authentication attempts reduces the risk of brute-force attacks by restricting failed login attempts, enhancing security against unauthorized access

PoC代码[已公开]

id: file-limit-max-auth-attempts

info:
  name: Limit Maximum SSH Authentication Attempts
  author: pussycat0x
  severity: unknown
  description: |
    Limiting maximum SSH authentication attempts reduces the risk of brute-force attacks by restricting failed login attempts, enhancing security against unauthorized access
  remediation: |
    Set MaxAuthTries 3 in /etc/ssh/sshd_config to limit SSH authentication attempts and restart the SSH service.
  reference:
    - https://vishalraj82.medium.com/hardening-openssh-security-37f5d634015f
    - https://www.tenable.com/audits/items/CIS_Amazon_Linux_2_v3.0.0_L1.audit:82ddb0bcc7ddfddaae3ec0b408ffb225
  metadata:
    verified: true
  tags: audit,config,file,ssh

file:
  - extensions:
      - all

    matchers:
      - type: word
        words:
          - "#MaxAuthTries"
# digest: 4a0a0047304502206f0493702f8043cb02ad1472a60f137ef35f1bfc7bd62a34e35cdda982b7584c02210083005bde958818ce51bcf1bdbaa526cab0bef5ca48821a501d3851e9156db1b4:922c64590222798bb761d5b6d8e72950

来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/./file/audit/ssh/file-limit-max-auth-attempts.yaml

漏洞描述

PoC代码[已公开]

相关漏洞推荐