[sclug] SSH Worm?

Tom Dawes-Gamble tmdg at tmdg.co.uk
Sun Apr 24 20:00:24 UTC 2005


Yes I've seen those too.  So I just added sshd to hosts.deny to deny all
and then opened up the places I connect from in /etc/hosts.allow
You can't blame them for trying.  ;-)


On Sun, 2005-04-24 at 16:22 +0100, Dr Adam J Trickett wrote:
> Hi,
> Logcheck has spotted a lot of failed SSH login attempts using "obvious"
> usernames on my home server.
> Obviously I only allow logins via certain named accounts and only if
> they have a certificate. I also keep my box up to date, so if there are
> problems in SSL/SSH they will get fixed pretty quick.
> Anyone else seen this kind of activity recently?
> (Sorry for the cross-post).
There are 10 types of people in the world.
Those that understand Binary and those that don't.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.tmdg.co.uk/pipermail/sclug/attachments/20050424/aeb01e03/attachment.bin

More information about the Sclug mailing list