Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Tech and Talk » OS and Software » All Things Unix » SSH scanning.
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Links: ·Forum FAQ ·Attitude Adjustment ·Linux docs ·DistroWatch ·OPLM ·FreeBSD Handbook
Linux Linux on the wall... »
« cleaning a deb system  
AuthorAll Replies


pmohr
Premium
join:2002-09-22
Oak Ridge, TN

reply to BeesTea
Re: SSH scanning.

Hmm, only a few attempts here -
Jul 22 01:47:46 hackzbox sshd[4477]: Failed password for illegal user test from 24.14.31.1
 *45 port 3565 ssh2
Jul 22 01:47:47 hackzbox sshd[4479]: Failed password for illegal user guest from 24.14.31.
 *145 port 3621 ssh2
Jul 18 03:45:38 hackzbox sshd[25647]: Failed password for illegal user test from 62.117.99
 *.83 port 3841 ssh2
Jul 18 03:45:39 hackzbox sshd[25649]: Failed password for illegal user guest from 62.117.9
 *9.83 port 3870 ssh2

(*) WARNING 4 long line(s) split

However, I've had a lot more scans on my ftp, which I guess could be normal, but since I rarely check my auth logs, not really something I've seen -
[ Fri Jul 23 - 16:02:22 - pts/21 ]
[pmohr@HackzBox] log $ sudo grep no\ such\ user auth.log | wc -l
16
[ Fri Jul 23 - 16:02:24 - pts/21 ]
[pmohr@HackzBox] log $ sudo bzcat auth.log.*.bz* | grep no\ such\ user | wc -l
16
to forum · permalink · · 2004-07-23 16:07:55 · (locked)


JohnInSJ
Premium
join:2003-09-22
San Jose, CA
·Comcast

 Weird. I got a 4 more today, from 194.105.226.117 (skjalfti17.simnet.is)- same test/guest ssh probe. Something must be worming its way around the net.

Iceland? (simnet.is) O...K...
to forum · permalink · · 2004-07-23 16:46:52 · (locked)


JohnInSJ
Premium
join:2003-09-22
San Jose, CA
·Comcast

 Oh hey guys you might want to drop the SANS Internet Storm Center folks a message - they're tracking this to see how big it is.

»isc.incidents.org/diary.php?isc=···a345f342
to forum · permalink · · 2004-07-23 17:03:17 · (locked)
Thread is
Forums » Tech and Talk » OS and Software » All Things UnixLinux Linux on the wall... »
« cleaning a deb system  

Sunday, 08-Nov 22:09:59 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [156] Cable Uncapper Faces Criminal Charges
· [140] AT&T Sues Verizon Over 3G Ads
· [112] Why Run Fiber When You Can Run Ads That Pretend You Do?
· [108] Comcast Is Simply Getting Huge
· [93] Apple Cooking Up New $30 A Month TV Service?
· [83] Bits Of ACTA Agreement Leaking Out
· [80] Will 'Three Strikes' Come To The United States?
· [78] Verizon To Double Smartphone ETFs?
· [77] Verizon: Droid Tethering Will Cost $30 Extra
· [73] Comcast, NBC Deal Almost Complete
Most people now reading
· My cat is reluctant to exercise. [General Questions]
· Hit and run [General Questions]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· [WIN7] Which Services in Win 7 Have You Turned Off? [Microsoft Help]
· [FS] Motherboard + CPU + Hard Drive + Servers + More! [For Sale/Wanted]
· [NFL] Week 9 Games Thread [Sports Chat]
· Voxox Unlimited US/Canada for $2.45 or World $12.95 a month [VOIP Tech Chat]
· Need Credit Card Recommendation [General Questions]
· TekSavvy site down? [TekSavvy]
· [WIN7] OEM Upgrade to Windows 7 [Microsoft Help]