I need a bit of help on the log, I was watching the tread on the hack
attempt so I started emailing my log file to myself as suggested. Some
of this could have been me trying to kill my CD burner it was giving me
some trouble, but what's up with the SSHD? It looks like someone was
poking around port 22.
Thanks Tim...
--------------------- Connections (secure-log) Begin
------------------------
Connections:
Service sgi_fam:
<no address>: 8 Time(s)
**Unmatched Entries**
userhelper[4661]: running '/sbin/reboot' with root privileges on behalf
of 'root'
gdm[3484]: pam_succeed_if: requirement "uid < 100" not met by user
"timothy"
userhelper[3819]: running '/sbin/reboot' with root privileges on behalf
of 'timothy'
gdm[3489]: pam_succeed_if: requirement "uid < 100" not met by user
"timothy"
gdm[3489]: pam_succeed_if: requirement "uid < 100" not met by user
"timothy"
gdm[3489]: pam_succeed_if: requirement "uid < 100" not met by user
"timothy"
userhelper[14171]: running '/sbin/reboot' with root privileges on behalf
of 'root'
gdm[3491]: pam_succeed_if: requirement "uid < 100" not met by user
"timothy"
---------------------- Connections (secure-log) End
-------------------------
--------------------- sendmail Begin ------------------------
**Unmatched Entries**
STARTTLS=server: file /etc/mail/certs/cert.pem unsafe: No such file
or directory: 4 Time(s)
---------------------- sendmail End -------------------------
--------------------- SSHD Begin ------------------------
SSHD Killed: 4 Time(s)
SSHD Started: 4 Time(s)
Failed to bind:
0.0.0.0 port 22 (Address already in use) : 4 Time(s)
---------------------- SSHD End -------------------------
