[Full-disclosure] Spike in SSH scans
J. Oquendo
sil at infiltrated.net
Mon Oct 22 18:42:55 BST 2007
Adrian wrote:
> Yeah, some of those ips also tried to login on my server as 'mysql' and
> 'root'.
> Even my university is part of that crappy botnet. :x
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
http://atlas.arbor.net/service/tcp/22 +66.0 % as of yesterday.
--
====================================================
J. Oquendo
SGFA (FW+VPN v4.1)
SGFE (FW+VPN v4.1)
"I hear much of people's calling out to punish the
guilty, but very few are concerned to clear the
innocent." Daniel Defoe
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xF684C42E
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5533 bytes
Desc: S/MIME Cryptographic Signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071022/dd90c0ef/attachment.bin
Full-Disclosure is hosted and sponsored by Secunia.