On Fri, 06 May 2022 15:31:12 -0700, Mike D via mailop <mailop@mailop.org>
wrote:
>I highly recommend using greynoise.io to help filter your logs. They do
>a pretty good job of determining what connections are benign scanners
>and which lead to subsequent attacks.
Benign scanners are the ones who transparently announce their intentions,
preferably before commencing their scans.
ALL others are hostile, without exception. Especially the ones who are
checking out login vulnerabilities on an SSH port that has been moved to port
2271.
mdr
--
The world was almost won by such an ape!
The nations put him where his kind belong.
But do not rejoice too soon at your escape.
The womb he crawled from is still going strong.
-- Bertold Brecht,"The Resistible Rise of Arturo UI"
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
