It's also been happening for a while, back as far as Aug 30 in my logs, which is the limit of my log retention.
On Sun, 2004-09-26 at 23:08, Glen Turner wrote: > On Sun, 2004-09-26 at 12:42, Phil Scarratt wrote: > > Over the last 3-4 days all machines under my control with public access > > have logged attempts by someone(people) to log in via ssh (only port > > that is open on the machines). > > We see this against our routers on occasion. > > > Anyone else been getting such attacks? Just seems a little odd that all > > of a sudden after a long period of silence, someone (peoples) tries now. > > Because it's a stupid attack. It leaves log entries, the originating > machine is easily found, and it's difficult to argue lack of intent > before a magistrate. > > What SSH really needs is certificate-checking for access. It should be > possible to do this, but I've been unable to find the right config for > OpenSSH. > > -- > Glen Turner Tel: (08) 8303 3936 or +61 8 8303 3936 > Australia's Academic & Research Network www.aarnet.edu.au -- Howard. LANNet Computing Associates; Your Linux people <http://www.lannetlinux.com> ------------------------------------------ "When you just want a system that works, you choose Linux; when you want a system that just works, you choose Microsoft." ------------------------------------------ "Flatter government, not fatter government; Get rid of the Australian states." -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
