diff options
Diffstat (limited to 'results/classifier/deepseek-2-tmp/output/vnc/1828207')
| -rw-r--r-- | results/classifier/deepseek-2-tmp/output/vnc/1828207 | 7 |
1 files changed, 0 insertions, 7 deletions
diff --git a/results/classifier/deepseek-2-tmp/output/vnc/1828207 b/results/classifier/deepseek-2-tmp/output/vnc/1828207 deleted file mode 100644 index 131d5bdf..00000000 --- a/results/classifier/deepseek-2-tmp/output/vnc/1828207 +++ /dev/null @@ -1,7 +0,0 @@ - -Request to add something like "Auth failed from IP" log report for built-in VNC server - -In environment with needs of public accessible VNC ports there is no logs or other registered events about authentication failures to analyze and/or integrate it to automated services like fail2ban ans so on. -Thus the built-in VNC service is vulnerable to brutforce attacks and in combination with weak built-in VNC-auth scheme can be a security vulnerability. - -Adding a simple log record like "QEMU VNC Authentication failed 192.168.0.5:5902 - 123.45.67.89:7898" will permit to quickly integrate it to fail2ban system. \ No newline at end of file |