Re: Continuous brute force attempt from own server !!!

To: debian-user@lists.debian.org
Subject: Re: Continuous brute force attempt from own server !!!
From: Lars Noodén <lars.nooden@gmail.com>
Date: Fri, 26 Jul 2013 12:55:04 +0300
Message-id: <[🔎] 51F24778.1080008@gmail.com>
In-reply-to: <[🔎] 20130726143527.23b9c829@shiva.selfip.org>
References: <[🔎] 20130726121236.1b8213ba@shiva.selfip.org> <[🔎] 51F238BF.5050509@online.de> <[🔎] 20130726143527.23b9c829@shiva.selfip.org>

On 07/26/2013 12:05 PM, J B wrote:
> accepted public key from <username_of_my_local_box> from
<WAN_IP_of_my_local_box> port 50574 ssh2

That looks like a valid log in from "WAN_IP_of_my_local_box" using one
of your keys.  If it is not you or one of your scripts then start by
disabling that key and making a new one for yourself.  It's a good idea
for keys to be rotated periodically anyway.

Regards,
/Lars

Reply to:

Follow-Ups:
- Re: Continuous brute force attempt from own server !!!
  - From: Brian <ad44@cityscape.co.uk>

References:
- Continuous brute force attempt from own server !!!
  - From: J B <bakshi12@gmail.com>
- Re: Continuous brute force attempt from own server !!!
  - From: benjamin kent <thepaladin@online.de>
- Re: Continuous brute force attempt from own server !!!
  - From: J B <bakshi12@gmail.com>

Prev by Date: Re: Continuous brute force attempt from own server !!!
Next by Date: verify download
Previous by thread: Re: Continuous brute force attempt from own server !!!
Next by thread: Re: Continuous brute force attempt from own server !!!
Index(es):
- Date
- Thread