ssh一个多月被爆破了20000+次
偶然打开auth.log看了一下,震惊了,我这256M的小破机居然都能受到这种待遇。已经改了高位随机端口,开了密钥登陆,禁用密码登录,会有风险吗:lol关机保平安 在哪里能看? 这个不是像每天吃饭一样正常吗? 大惊小怪,一个月5w的我都有 大惊小怪国产软件扫盘 隐私被上传 几e次 都没人管 只要是个鸡,就会一直被扫,然后尝试,然后失败。盯着日志看一会,就有人来了
Jan3 09:11:57 MyCloudConeVPS sshd: Failed password for root from 190.146.5.153 port 38702 ssh2Jan3 09:11:57 MyCloudConeVPS sshd: Received disconnect from 190.146.5.153 port 38702:11: Bye Bye Jan3 09:11:57 MyCloudConeVPS sshd: Disconnected from authenticating user root 190.146.5.153 port 38702 Jan3 09:12:15 MyCloudConeVPS sshd: Unable to negotiate with 180.101.88.240 port 28252: no matching host key type found. Their offer: ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa,ssh-dss Jan3 09:13:08 MyCloudConeVPS sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.146.5.153user=rootJan3 09:13:10 MyCloudConeVPS sshd: Failed password for root from 190.146.5.153 port 59050 ssh2Jan3 09:13:12 MyCloudConeVPS sshd: Received disconnect from 190.146.5.153 port 59050:11: Bye Bye Jan3 09:13:12 MyCloudConeVPS sshd: Disconnected from authenticating user root 190.146.5.153 port 59050
页:
[1]