On Sun, 2004-09-26 at 12:42, Phil Scarratt wrote: > Over the last 3-4 days all machines under my control with public access > have logged attempts by someone(people) to log in via ssh (only port > that is open on the machines).
We see this against our routers on occasion. > Anyone else been getting such attacks? Just seems a little odd that all > of a sudden after a long period of silence, someone (peoples) tries now. Because it's a stupid attack. It leaves log entries, the originating machine is easily found, and it's difficult to argue lack of intent before a magistrate. What SSH really needs is certificate-checking for access. It should be possible to do this, but I've been unable to find the right config for OpenSSH. -- Glen Turner Tel: (08) 8303 3936 or +61 8 8303 3936 Australia's Academic & Research Network www.aarnet.edu.au -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
