Re: Dictionary attacks on port 22
- From: Carlos Moreno <moreno_at_mochima_dot_com@xxxxxxxxxxxxxx>
- Date: Mon, 27 Feb 2006 14:18:20 -0500
Harry Putnam wrote:
Thanks for the tips posters. But out of 3 responses none were about
my query. Is there an unusual amount of dictionary attacks on port 22
going on lately?
I think it has increased, but I still don't get anywhere near 13k
in 3 days.
I got 1510 attempts on Feb 25, 1032 attempts yesterday, and 490
attempts so far today (that's for a web server, with an actual
domain name registered, which I assume would increase the likelihood
of attacks, even if only slightly)
Try to see if there are patterns in the IPs -- I mean, if 12.5 of
those 13 come from one IP, then maybe you're being targetted, as
opposed to randomly chosen as a potential victim.
Carlos
--
.
- References:
- Dictionary attacks on port 22
- From: Harry Putnam
- Re: Dictionary attacks on port 22
- From: Harry Putnam
- Dictionary attacks on port 22
- Prev by Date: Re: pop3 through ssh tunneling
- Next by Date: Re: What can I do about breakin attempts?
- Previous by thread: Re: Dictionary attacks on port 22
- Next by thread: Re: Dictionary attacks on port 22
- Index(es):
Relevant Pages
|
