somebody is obviously trying to hack into my machine,
which has out-of-the box Mandrake 10.0 installed.
these are some of the entries from /var/log/auth.log:
sshd: Failed password for nobody from ::ffff:22.214.171.124 port 57729
sshd: Illegal user patrick from ::ffff:126.96.36.199
sshd(pam_unix): check pass; user unknown
sshd(pam_unix): authentication failure; logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=webhost2.ocsonline.com
Failed password for root from ::ffff:188.8.131.52 port 58055 ssh2
sshd(pam_unix): authentication failure; logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=webhost2.ocsonline.com user=root
and a lot of similar messages for other usernames that don't exist
on my machine.
as far as i can tell, so far they haven't been able to get in (i checked
with 'last', and also ran chkrootkit and rkhunter).
what measures should i take to tighten security?