Re: sshd attack?
ippl is also quite helpful. http://pltplp.net/ippl/.
On Wed, Aug 15, 2001 at 09:59:27AM +0200, J?rgen Persson wrote:
> > How can I find out, from where this attack is originating? Must I increase
> > the verbositiy level of sshd to achieve this?
> sshd might be able to do it. I'm logging the originating adress through
> my internet services daemon. I happen to use tcpserver but inetd
> and xinetd ought to be able to do it as well. A second alternative is
> to do it through a tcpwrapper like Venemas.
>  http://cr.yp.to/ucspi.tcp/tcpserver.html
>  ftp://ftp.uk.linux.org/pub/linux/Networking/netkit/
>  http://www.xinetd.org/
>  ftp://ftp.porcupine.org/pub/security/
> To UNSUBSCRIBE, email to email@example.com
> with a subject of "unsubscribe". Trouble? Contact firstname.lastname@example.org
"Any OS is only as good as its admin, and you obviously suck."
-- Ian Gulliver, http://orbz.org/mail/mansunix.txt