|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: sequences in the auth.log
From: Craig Edwards (brain
winbot.co.uk)
Date: Fri Aug 13 2004 - 12:35:06 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
ive been getting this too on both my freebsd boxes, it seems to be an epidemic. i guess its some form of ssh scanner looking for open accounts with no passwords (or easily guessable passwords)?
Thanks,
Craig
>Hi all,
>I found similar sequences in the
<snip>
>165.21.103.20 port 39836 ssh2
>Aug 13 13:56:35 www sshd[26113]: Illegal user test from 165.21.103.20
>Aug 13 14:25:36 www sshd[26485]: Illegal user test from 202.28.120.57
>Aug 13 14:25:41 www sshd[26487]: Illegal user guest from 202.28.120.57
>
>What are these?
>
_______________________________________________
freebsd-securityfreebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribefreebsd.org"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]