We originally had the firewall machine locking up and acting strange, it turned out to be a disk going bad. I thought there might be a remote chance that we had been hacked originally so I checked /var/log/secure. -----Original Message----- From: fedora-list-bounces@xxxxxxxxxx [mailto:fedora-list-bounces@xxxxxxxxxx] On Behalf Of Tim Holmes Sent: Monday, August 15, 2005 10:00 AM To: For users of Fedora Core releases Subject: RE: Off topic: Hacker > On Mon, 2005-08-15 at 11:11, Rick Lim wrote: > > Hi there, > > > > I know this is not the correct forum to ask this question, but I have to > > start somewhere....... > > > > I have a friend with a linux firewall box. > > There appears to be a very simple minded hacker trying to do simple ssh > > password attacks on this box. > > > > I have been using whois and reporting this to each ISP he/she is coming > from > > but he/she just breaks into a different machine on an new ISP and tries > > again. > > > > Is there something more I can do to track this person down? > > Thanks. > > [Tim Holmes] How did you detect this / track this, I have ssh open to the net for remote access, and I would like to learn how to detect / defend this kind of thing TIM -- fedora-list mailing list fedora-list@xxxxxxxxxx To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
