Autor
en /var/log/messages:
Código:
Feb 2 09:24:08 apolo sshd(pam_unix)[28405]: check pass; user unknown
Feb 2 09:24:08 apolo sshd(pam_unix)[28405]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.7.215.216
en /var/log/secure:
Código:
Feb 2 09:24:11 apolo sshd[28405]: Failed password for invalid user recruit from ::ffff:66.7.215.216 port 33994 ssh2
Feb 2 12:24:11 apolo sshd[28406]: Failed password for invalid user recruit from ::ffff:66.7.215.216 port 33994 ssh2
Feb 2 12:24:11 apolo sshd[28406]: Received disconnect from ::ffff:66.7.215.216: 11: Bye Bye
Feb 2 09:24:12 apolo sshd[28407]: Invalid user alias from ::ffff:66.7.215.216
Feb 2 09:24:12 apolo sshd[28408]: input_userauth_request: invalid user alias
Feb 2 09:24:12 apolo sshd[28407]: reverse mapping checking getaddrinfo for 66-7-215-216.static.dimenoc.com failed - POSSIBLE BREAKIN ATTEMPT!
Feb 2 09:24:15 apolo sshd[28407]: Failed password for invalid user alias from ::ffff:66.7.215.216 port 34192 ssh2
Feb 2 12:24:15 apolo sshd[28408]: Failed password for invalid user alias from ::ffff:66.7.215.216 port 34192 ssh2
Feb 2 12:24:15 apolo sshd[28408]: Received disconnect from ::ffff:66.7.215.216: 11: Bye Bye
Feb 2 09:24:17 apolo sshd[28409]: Invalid user office from ::ffff:66.7.215.216
Feb 2 09:24:17 apolo sshd[28410]: input_userauth_request: invalid user office
Feb 2 09:24:17 apolo sshd[28409]: reverse mapping checking getaddrinfo for 66-7-215-216.static.dimenoc.com failed - POSSIBLE BREAKIN ATTEMPT!
es posible que esten llegando al PC con RedHat pasando a travez del router?
En línea
