SSH hacked?
Knapp
magick.crow at gmail.com
Wed Jan 14 14:25:40 UTC 2009
On Wed, Jan 14, 2009 at 3:15 PM, Brian <ad44 at cityscape.co.uk> wrote:
> On Tue 13 Jan 2009 at 19:23:52 -0800, NoOp wrote:
>
> > I think you will find that the existing bots out there will in fact
> > eventually pickup your port 22, and the scripts will pass that along to
> > other bot machines. The result is sort of like flies drawn to honey;
> > eventually multiple bots will start dictionary ssh attempts.
>
> Maybe my bit of the internet is atypical but I've yet to observe this.
> Since September 2008 there have been 41,000 attempts to log in via ssh.
> Not all from the same host of course but some hang in there and try 400+
> username/password combinations. Rather sad really; I doubt they even
> get close to a valid username.
>
> If I thought moving sshd off port 22 would reduce the chances of a bot
> gaining access to a machine I'd consider doing it.It doesn't so I don't.
>
I bet that is sad with your machine but on the other hand, I bet if they try
that with 40,000 computers they get in sometimes.
--
Douglas E Knapp
Amazon Gift Cards; let them choose!!
http://www.amazon.com/gp/product/B001078FFE?ie=UTF8&tag=seattlebujinkand&linkCode=as2&camp=1789&creative=9325&creativeASIN=B001078FFE
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20090114/7a15fd2b/attachment.html>
More information about the ubuntu-users
mailing list