On Thu, 17 Jan 2002, Steve wrote: > I have a Solaris server at work running SSH-2.0-2.0.13 and lately I've > noticed weird addresses in the logs attempting to connect to the sshd > server. It seems that we have similar problems. Here are a few > examples of the log entries: > > Dec 27 18:55:10 sshd2: refused connect from webcoenvironmental.com > Dec 28 07:48:32 sshd2: refused connect from tripleimage.nobleimage.com > Dec 29 16:00:02 sshd2: refused connect from nikita.csun.edu > > I'm running tcp wrappers to only allow certian ip addresses to access > the ssh server, so I'm probably okay but does anyone know if there are > any security holes in the version of ssh that I am running? > That version is possibly vulnerable, but check the ssh website to be certain. There was recently a Solaris login vulnerability and someone may be looking for a way to exploit this through ssh. It was released under two months ago.
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
