8 Nov
2005
8 Nov
'05
07:49
On Tuesday 08 November 2005 01:52, Dan Abernathy wrote:
Hello all
I notice several automated break-in attempts appearing in /var/log/messages regarding sshd. A small sample:
Nov 7 14:34:10 d8400 sshd[18607]: Invalid user a from 71.129.198.189 Nov 7 14:34:11 d8400 sshd[18609]: Invalid user aaron from 71.129.198.189
You could use public key authentication only and disable password logins. That way you could sleep better and all the other methods described would serve that these attacks don't fill up your logs. Ulf