Security Basics: Re: what to do?

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Basics mailing list archives

Re: what to do?

From: Ansgar -59cobalt- Wiechers <bugtraq () planetcobalt net>
Date: Sat, 27 Aug 2005 01:52:43 +0200

On 2005-08-25 Bill Smith wrote:

I noticed that someone is trying to hacker into my machine. Please see
below is the content of /var/log/security.


It's dictionary attacks against weak ssh passwords. Have your users have
strong passwords and you'll be fine.

http://www.whitedust.net/article/27/Recent%20SSH%20Brute-Force%20Attacks/

what I would like some advice of you guys is, what will I do with
these people?


Ignore them.

btw, I do have FW


A firewall (as in "packet filter") usually won't protect services you do
want to be available.

Regards
Ansgar Wiechers
-- 
"Another option [for defragmentation] is to back up your important files,
erase the hard disk, then reinstall Mac OS X and your backed up files."
--http://docs.info.apple.com/article.html?artnum=25668

By Date By Thread

Current thread:

what to do? Bill Smith (Aug 26)
- Re: what to do? Jayson Anderson (Aug 29)
  - Re: what to do? AragonX (Aug 30)
- Re: what to do? Ansgar -59cobalt- Wiechers (Aug 29)
- Re: what to do? Alexander Bolante (Aug 29)
- Re: what to do? Robert Escue (Aug 29)
- Re: what to do? Bow Sineath (Aug 29)
  - Re: what to do? Leif Ericksen (Aug 31)
- Re: what to do? Duncan (Aug 29)