"Hacking" Attempts

Tags:

This is my latest attempt at putting up some interesting content here. I intend to make this a regular feature containt the various attempts made to "hack" into my linux box. Here's today's logs and summary:

SSH Log

Mar 6 19:58:36 [sshd] Did not receive identification string from 207.36.180.61
Mar 6 20:20:09 [sshd] Invalid user jordan from 207.36.180.61
Mar 6 20:20:10 [sshd] Invalid user michael from 207.36.180.61
Mar 6 20:20:11 [sshd] Invalid user nicole from 207.36.180.61
Mar 6 20:20:11 [sshd] Invalid user daniel from 207.36.180.61
Mar 6 20:20:12 [sshd] Invalid user andrew from 207.36.180.61
Mar 6 20:20:12 [sshd] Invalid user nathan from 207.36.180.61
Mar 6 20:20:13 [sshd] Invalid user matthew from 207.36.180.61
Mar 6 20:20:14 [sshd] Invalid user magic from 207.36.180.61
Mar 6 20:20:14 [sshd] Invalid user lion from 207.36.180.61
Mar 6 20:20:15 [sshd] Invalid user david from 207.36.180.61
Mar 6 20:20:15 [sshd] Invalid user jason from 207.36.180.61
Mar 6 20:20:16 [sshd] Invalid user ben from 207.36.180.61
Mar 6 20:20:17 [sshd] Invalid user carmen from 207.36.180.61
Mar 6 20:20:17 [sshd] Invalid user justin from 207.36.180.61
Mar 6 20:20:18 [sshd] Invalid user charlie from 207.36.180.61
Mar 6 20:20:19 [sshd] Invalid user steven from 207.36.180.61
Mar 6 20:20:19 [sshd] Invalid user brandon from 207.36.180.61
Mar 6 20:20:20 [sshd] Invalid user brian from 207.36.180.61
Mar 6 20:20:21 [sshd] Invalid user stephen from 207.36.180.61
Mar 6 20:20:21 [sshd] Invalid user william from 207.36.180.61
Mar 6 20:20:22 [sshd] Invalid user angel from 207.36.180.61
Mar 6 20:20:22 [sshd] Invalid user emily from 207.36.180.61
Mar 6 20:20:23 [sshd] Invalid user eric from 207.36.180.61
Mar 6 20:20:24 [sshd] Invalid user joe from 207.36.180.61
Mar 6 20:20:24 [sshd] Invalid user tom from 207.36.180.61
Mar 6 20:20:25 [sshd] Invalid user billy from 207.36.180.61
Mar 6 20:20:26 [sshd] Invalid user buddy from 207.36.180.61
Mar 6 20:20:26 [sshd] Invalid user jeremy from 207.36.180.61
Mar 6 20:20:27 [sshd] Invalid user vampire from 207.36.180.61
Mar 6 20:20:27 [sshd] Invalid user betty from 207.36.180.61
Mar 6 20:20:28 [sshd] Invalid user henry from 207.36.180.61
Mar 6 20:20:29 [sshd] Invalid user max from 207.36.180.61
Mar 6 20:20:30 [sshd] Invalid user nicholas from 207.36.180.61
Mar 6 20:20:30 [sshd] Invalid user robin from 207.36.180.61
Mar 6 20:20:31 [sshd] Invalid user system from 207.36.180.61
Mar 6 20:20:31 [sshd] Invalid user johnny from 207.36.180.61
Mar 6 20:20:32 [sshd] Invalid user lucy from 207.36.180.61
Mar 6 20:20:33 [sshd] Invalid user market from 207.36.180.61
Mar 6 20:20:34 [sshd] Invalid user maria from 207.36.180.61
Mar 6 20:20:35 [sshd] Invalid user rose from 207.36.180.61
Mar 6 20:20:36 [sshd] Invalid user god from 207.36.180.61
Mar 6 20:20:37 [sshd] Invalid user barbara from 207.36.180.61
Mar 6 20:20:38 [sshd] Invalid user larisa from 207.36.180.61
Mar 6 20:20:38 [sshd] Invalid user shell from 207.36.180.61
Mar 6 20:20:39 [sshd] Invalid user jane from 207.36.180.61
Mar 6 20:20:40 [sshd] Invalid user dog from 207.36.180.61
Mar 6 20:20:40 [sshd] Invalid user blue from 207.36.180.61
Mar 6 20:20:41 [sshd] Invalid user red from 207.36.180.61
Mar 6 20:20:42 [sshd] Invalid user yellow from 207.36.180.61
Mar 6 20:20:42 [sshd] Invalid user green from 207.36.180.61
Mar 6 20:20:43 [sshd] Invalid user black from 207.36.180.61
Mar 6 20:20:44 [sshd] Invalid user pub from 207.36.180.61 

Summary

Now aren't I glad that I don't have any easily accessible SSH accounts.

Today's Security Changes

  • Added a whole bunch of new iptables rules
  • Disabled ssh root access
  • Enabled iptables logging

Comments