[nylug-talk] Increased amount in port hacking attemtpts

[Gregg Levine]

On Nov 26, 2007 5:14 PM, john <john at grumpet.net> wrote:
> Gregg Levine wrote:
> > Hello!
> > Has anyone noticed an increase in the amounts of individuals, and
> > others, attempting to crash a normally secure SSH server? Now we could
> > be SSH service on mine, certainly that's where I am seeing them, but I
> > mean everywhere.
> >
> >
> > Also it seems that the attempts are all dictionary based, and its the
> > US English one. I find that curious in that all of the attacks came
> > from overseas, plus one overzealous twerp from right here in the US,
> > based in the domain served by my ISP. He was in Texas as it happens.
> >
> > I should state that the vast majority of these pests are indeed coming
> > from overseas. There was one big overzealous twerp from here in the
> > US, and based in the same area as my ISP serves.
> >
> > Can anyone suggest an IPChains method to drop the entire areas served
> > by services in Europe and Asia? Or failing that a known working method
> > for dumping out these twerps by simply giving them three tries to
> > prove they really don't know my password(s) and throwing them out.
> >
> > Oh and this is on a Slackware-11.0 based system.
> >
> Not necessarily ipchains-based, but http://denyhosts.sourceforge.net/ is
> very effective.
>
> John

Hello!
Here's a funny one, (funny meaning peculiar) on my ISP's news spaces
over the weekend was this bit of news, http://tinyurl.com/3a7kkp .
And  if nothing else it manages to confirm my comments earlier in this
thread. And it describes what I happen to think about that country. I
wonder if our CIA gang is pursuing the same line of dirty tricks? It
also confirms my earlier theories concerning the firm mentioned in the
news blurb.

-- 
Gregg C Levine gregg.drwho8 at gmail.com
"This signature was once found posting rude
 messages in English in the Moscow subway."