I see repeated attempts to connect to my public rsync Debian server: Dec 6 00:20:01 rsync connection attempt from 217.21.40.1 (217.21.40.1:29558->x.x.x.x:873)
rsync and kernel are patched, but I wonder if there is anything one can do to identify/catch/??? a potential intruder. -Igor