webserver security
I just looked through some weblogs today and saw the following.
Quote:
Did someone log on and acquire root privleges? and what is this? Quote:
please security guru help me. |
that's not a log from a web server, it's just someone locally updating the system with up2date... you? i assume that could originate to a little system tray icon telling you you had system updates to apply, and so you told it to apply them?
the other one is someone trying to start ssh when it's already running, no reason to think there's anything malicious about that... dumb maybe but not malicious. :) |
This looks like someone is trying to break in.
Quote:
Quote:
|
You could start by reading the "Failed SSH login attempts" sticky at the top of the forum.
Then install something like Fail2Ban. |
All times are GMT -5. The time now is 04:30 PM. |