guys this archive tells u of a particular ssh attacks trying out ip from a list generated by tcpdump. this happened to me today. the binaries listed in the mail try and login through ssh as the user guest or test or u know common users, please go through this link. very important for us to know.
http://lists.ssc.com/pipermail/linux-list/2004-July/021300.html
On 17/01/05 11:47 +0530, santosh rao wrote:
guys this archive tells u of a particular ssh attacks trying out ip from a list generated by tcpdump. this happened to me today. the binaries listed in the mail try and login through ssh as the user guest or test or u know common users, please go through this link. very important for us to know.
Yikes! This news is ancient (almost a year old now, I think).
Devdas Bhagat
On Mon, Jan 17, 2005 at 11:47:47AM +0530, santosh rao wrote:
this archive tells u of a particular ssh attacks trying outip from a list generated by tcpdump. this happened to me today. the binaries listed in the mail try and login through ssh as the user guest or test or u know common users, please go through this link. very important for us to know.
Between firewalls, AllowUsers, PermitRootLogin forced-commands-only, decent passwords, and password-less key-based access, we don't need that link.
-
Devdas Bhagat -
santosh rao -
Satya