BLU Discuss list archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Discuss] Reading logwatch e-mails
- Subject: [Discuss] Reading logwatch e-mails
- From: richard.pieri at gmail.com (Rich Pieri)
- Date: Wed, 12 Jun 2024 21:25:30 -0400
- In-reply-to: <70be4d75-30f9-4417-9315-d9a0acc9bbb9@borg.org>
- References: <70be4d75-30f9-4417-9315-d9a0acc9bbb9@borg.org>
On Wed, 12 Jun 2024 09:09:17 -0700 Kent Borg <kentborg at borg.org> wrote: > I recently started actually looking at logwatch e-mails I had been > ignoring. These machines have sshd listening on the open internet, > and man, there are a lot of failed ssh logins. Fastest I've seen a new machine starting to get attacked by brute force like this is about 3 minutes. fail2ban goes a long way to shutting these down. -- \m/ (--) \m/
- Follow-Ups:
- [Discuss] Reading logwatch e-mails
- From: kentborg at borg.org (Kent Borg)
- [Discuss] Reading logwatch e-mails
- References:
- [Discuss] Reading logwatch e-mails
- From: kentborg at borg.org (Kent Borg)
- [Discuss] Reading logwatch e-mails
- Prev by Date: [Discuss] Reading logwatch e-mails
- Next by Date: [Discuss] Reading logwatch e-mails
- Previous by thread: [Discuss] Reading logwatch e-mails
- Next by thread: [Discuss] Reading logwatch e-mails
- Index(es):