[Nottingham] sshd - POSSIBLE BREAK-IN ATTEMPT!

Martin martin at ml1.co.uk
Thu Jun 29 11:50:14 BST 2006


I've seen many attempts on ssh but never noticed this before:

Jun 29 11:46:28 - sshd[3990]: Failed password for invalid user angel
from 71.16.200.56 port 43521 ssh2
Jun 29 11:46:29 - sshd[3995]: Address 71.16.200.56 maps to
uslec-71.16.200.56.cust.uslec.net, but this does not map back to the
address - POSSIBLE BREAK-IN ATTEMPT!


What's that variation?
Where's ssh getting its mappings from?

Cheers all,
Martin

-- 
----------------
Martin Lomas
martin at ml1.co.uk
----------------



More information about the Nottingham mailing list