[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <F7A5086C-DE8F-11D8-A116-000D93C0F38C@teknovis.com>
From: andfarm at teknovis.com (Andrew Farmer)
Subject: Automated SSH login attempts?
On 22 Jul 2004, at 07:47, Jay Libove wrote:
> [ Posted to full disclosure and vulnwatch; please edit reply
> address(es)
> as appropriate. Thanks. -Jay ]
>
> My Linux system, and a Linux system run by a friend here in the same
> city
> but on a completely different netblock (different ISP), have both seen
> apparently automated attempts to log in to our systems via SSH in the
> past
> few days. Looks like a script.
I've seen the same, coming from hosts all over the Net. The accounts
tried seem to be "guest", "test", "root", and "admin". First hit was
around 11:15 PM PST, 22 July.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 186 bytes
Desc: This is a digitally signed message part
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040725/a01218a4/PGP.bin
Powered by blists - more mailing lists