Re: sequences in the auth.log
From: Peter C. Lai (sirmoo_at_cowbert.net)
Date: 08/13/04
- Previous message: Mike Silbersack: "Re: ICMP attacks against TCP"
- In reply to: Mohacsi Janos: "Re: sequences in the auth.log"
- Next in thread: Jan Muenther: "Re: sequences in the auth.log"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 13 Aug 2004 14:33:04 -0400 To: Mohacsi Janos <mohacsi@niif.hu>
On Fri, Aug 13, 2004 at 04:14:29PM +0200, Mohacsi Janos wrote:
> Hi Sandor,
> You don't have to worry, unless you have user 'test', 'guest',
> 'admin', 'root' with poor password: typically same or very similar to your
> accountname. There seems to be a script around the hackers to scan SSH and
> gain access to poorly configured servers.... Unfortunately they are plenty
> of badly configured servers. May be you should disable root access via SSH
> password (only via keys).
Disabling root login via ssh will still cause 'failed password' entries in
syslog. (on openssh 3.7 anyway)
-- Peter C. Lai University of Connecticut Dept. of Molecular and Cell Biology Yale University School of Medicine SenseLab | Research Assistant http://cowbert.2y.net/ _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
- Previous message: Mike Silbersack: "Re: ICMP attacks against TCP"
- In reply to: Mohacsi Janos: "Re: sequences in the auth.log"
- Next in thread: Jan Muenther: "Re: sequences in the auth.log"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
