On Fri, 26 Jul 2013 10:52:15 +0200 benjamin kent <thepaladin@online.de> wrote: > J B, how have you figured out that the port-scan targets > the ssh daemon specifically? > > as from log ``````````````````````````````` accepted public key from <username_of_my_local_box> from <WAN_IP_of_my_local_box> port 50574 ssh2 ``````````````````````````````````