免费注册 查看新帖 |

Chinaunix

  平台 论坛 博客 文库
论坛 操作系统 BSD 被来自俄罗斯的一个哥们盯上了,它这是要干嘛?
1234下一页
最近访问板块 发新帖
查看: 8009 | 回复: 33
打印 上一主题 下一主题

[FreeBSD] 被来自俄罗斯的一个哥们盯上了,它这是要干嘛? [复制链接]

door10000

论坛徽章:
2
摩羯座 日期:2014-05-26 12:02:462015年辞旧岁徽章 日期:2015-03-03 16:54:15
跳转到指定楼层
1 [收藏(0)] [报告]
发表于 2013-06-21 23:40 |只看该作者 |倒序浏览
Jun 21 14:27:29 Acer6 sshd[80534]: Address 79.172.10.78 maps to 79.172.10.78.ural.ru, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Jun 21 14:27:32 Acer6 sshd[80536]: Address 79.172.10.78 maps to 79.172.10.78.ural.ru, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Jun 21 14:27:32 Acer6 sshd[80536]: Invalid user gavrilov from 79.172.10.78
Jun 21 14:27:34 Acer6 sshd[80538]: Address 79.172.10.78 maps to 79.172.10.78.ural.ru, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Jun 21 14:27:34 Acer6 sshd[80538]: Invalid user sniff from 79.172.10.78
Jun 21 14:36:14 Acer6 sshd[80557]: Address 79.172.10.78 maps to 79.172.10.78.ural.ru, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
door10000

论坛徽章:
2
摩羯座 日期:2014-05-26 12:02:462015年辞旧岁徽章 日期:2015-03-03 16:54:15
2 [报告]
发表于 2013-06-21 23:41 |只看该作者
root@Acer6:/root # ssh -l gavrilov 79.172.10.78
gavrilov@79.172.10.78's password:
Permission denied, please try again.
gavrilov@79.172.10.78's password:
Permission denied, please try again.
gavrilov@79.172.10.78's password:
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
door10000

论坛徽章:
2
摩羯座 日期:2014-05-26 12:02:462015年辞旧岁徽章 日期:2015-03-03 16:54:15
3 [报告]
发表于 2013-06-21 23:42 |只看该作者
root@Acer6:/root # ssh -l sniff 79.172.10.78
sniff@79.172.10.78's password:
1Permission denied, please try again.
sniff@79.172.10.78's password:
Permission denied, please try again.
sniff@79.172.10.78's password:
Permission denied (publickey,password).
root@Acer6:/root #
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
door10000

论坛徽章:
2
摩羯座 日期:2014-05-26 12:02:462015年辞旧岁徽章 日期:2015-03-03 16:54:15
4 [报告]
发表于 2013-06-21 23:44 |只看该作者
它这样三次失败认证就退出认证要怎么搞?我们也好防止暴力破译密码呀。
大侠来给小白支个招。
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
door10000

论坛徽章:
2
摩羯座 日期:2014-05-26 12:02:462015年辞旧岁徽章 日期:2015-03-03 16:54:15
5 [报告]
发表于 2013-06-22 00:16 |只看该作者
ok了,原来是该sshd_config的MaxAuthTries 3。
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
door10000

论坛徽章:
2
摩羯座 日期:2014-05-26 12:02:462015年辞旧岁徽章 日期:2015-03-03 16:54:15
6 [报告]
发表于 2013-06-22 00:22 |只看该作者
有大侠能破了这俄罗斯兄弟的大门吗?
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
door10000

论坛徽章:
2
摩羯座 日期:2014-05-26 12:02:462015年辞旧岁徽章 日期:2015-03-03 16:54:15
7 [报告]
发表于 2013-06-22 11:01 |只看该作者
Jun 22 03:26:14 Acer6 sshd[2757]: Invalid user oracle from 213.248.110.43
Jun 22 03:26:17 Acer6 sshd[2759]: Invalid user test from 213.248.110.43
Jun 22 03:29:03 Acer6 sshd[2879]: Invalid user oracle from 213.248.110.43
Jun 22 03:29:12 Acer6 sshd[2887]: Invalid user oracle from 213.248.110.43
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
door10000

论坛徽章:
2
摩羯座 日期:2014-05-26 12:02:462015年辞旧岁徽章 日期:2015-03-03 16:54:15
8 [报告]
发表于 2013-06-22 11:05 |只看该作者
这家伙又来了。
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
pitonas

论坛徽章:
5
丑牛 日期:2014-01-21 08:26:26卯兔 日期:2014-03-11 06:37:43天秤座 日期:2014-03-25 08:52:52寅虎 日期:2014-04-19 11:39:48午马 日期:2014-08-06 03:56:58
9 [报告]
发表于 2013-06-22 14:01 |只看该作者
这家伙它是要干嘛?
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
door10000

论坛徽章:
2
摩羯座 日期:2014-05-26 12:02:462015年辞旧岁徽章 日期:2015-03-03 16:54:15
10 [报告]
发表于 2013-06-22 17:08 |只看该作者
  1. Jun 22 03:26:14 Acer6 sshd[2757]: Invalid user oracle from 213.248.110.43
  2. Jun 22 03:26:17 Acer6 sshd[2759]: Invalid user test from 213.248.110.43
  3. Jun 22 03:29:03 Acer6 sshd[2879]: Invalid user oracle from 213.248.110.43
  4. Jun 22 03:29:12 Acer6 sshd[2887]: Invalid user oracle from 213.248.110.43
  5. Jun 22 09:29:48 Acer6 sshd[3659]: Accepted keyboard-interactive/pam for root from 192.168.1.188 port 49207 ssh2
  6. Jun 22 11:00:20 Acer6 sshd[3836]: Accepted keyboard-interactive/pam for root from 192.168.1.188 port 49249 ssh2
  7. Jun 22 12:43:29 Acer6 sshd[4008]: Did not receive identification string from 112.65.239.124
  8. Jun 22 12:52:35 Acer6 sshd[4027]: Invalid user apache from 112.65.239.124
  9. Jun 22 12:52:37 Acer6 sshd[4029]: Invalid user sys from 112.65.239.124
  10. Jun 22 12:52:46 Acer6 sshd[4033]: Invalid user share from 112.65.239.124
  11. Jun 22 12:52:53 Acer6 sshd[4041]: Invalid user david from 112.65.239.124
  12. Jun 22 12:52:57 Acer6 sshd[4045]: Invalid user content from 112.65.239.124
  13. Jun 22 12:53:08 Acer6 sshd[4057]: Invalid user oracle from 112.65.239.124
  14. Jun 22 12:53:10 Acer6 sshd[4059]: Invalid user oracle from 112.65.239.124
  15. Jun 22 12:53:11 Acer6 sshd[4061]: Invalid user admin from 112.65.239.124
  16. Jun 22 12:53:17 Acer6 sshd[4063]: Invalid user scott from 112.65.239.124
  17. Jun 22 12:53:21 Acer6 sshd[4067]: Invalid user backup from 112.65.239.124
  18. Jun 22 12:53:23 Acer6 sshd[4069]: Invalid user thomas from 112.65.239.124
  19. Jun 22 12:53:24 Acer6 sshd[4071]: Invalid user judy from 112.65.239.124
  20. Jun 22 12:53:26 Acer6 sshd[4073]: Invalid user guest from 112.65.239.124
  21. Jun 22 12:53:30 Acer6 sshd[4077]: Invalid user apache from 112.65.239.124
  22. Jun 22 12:53:32 Acer6 sshd[4079]: Invalid user florin from 112.65.239.124
  23. Jun 22 12:53:33 Acer6 sshd[4081]: Invalid user dean from 112.65.239.124
  24. Jun 22 12:53:35 Acer6 sshd[4083]: Invalid user sysadmin from 112.65.239.124
  25. Jun 22 12:53:37 Acer6 sshd[4085]: Invalid user r00t from 112.65.239.124
  26. Jun 22 12:53:39 Acer6 sshd[4087]: Invalid user r00t from 112.65.239.124
  27. Jun 22 12:53:42 Acer6 sshd[4091]: Invalid user PlcmSpIp from 112.65.239.124
  28. Jun 22 12:53:46 Acer6 sshd[4095]: Invalid user test from 112.65.239.124
  29. Jun 22 12:53:48 Acer6 sshd[4097]: Invalid user test from 112.65.239.124
  30. Jun 22 12:53:50 Acer6 sshd[4099]: Invalid user luis from 112.65.239.124
  31. Jun 22 12:53:52 Acer6 sshd[4101]: Invalid user test1 from 112.65.239.124
  32. Jun 22 12:53:54 Acer6 sshd[4103]: Invalid user postgres from 112.65.239.124
  33. Jun 22 12:54:01 Acer6 sshd[4111]: Invalid user public from 112.65.239.124
  34. Jun 22 12:54:03 Acer6 sshd[4113]: Invalid user test from 112.65.239.124
  35. Jun 22 12:54:07 Acer6 sshd[4115]: Invalid user builder from 112.65.239.124
  36. Jun 22 12:54:11 Acer6 sshd[4119]: Invalid user chiara from 112.65.239.124
  37. Jun 22 12:54:13 Acer6 sshd[4121]: Invalid user diego from 112.65.239.124
  38. Jun 22 12:54:16 Acer6 sshd[4123]: Invalid user astrid from 112.65.239.124
  39. Jun 22 12:54:17 Acer6 sshd[4125]: Invalid user ines from 112.65.239.124
  40. Jun 22 12:54:19 Acer6 sshd[4127]: Invalid user patricia from 112.65.239.124
  41. Jun 22 12:54:21 Acer6 sshd[4129]: Invalid user martin from 112.65.239.124
  42. Jun 22 12:54:27 Acer6 sshd[4133]: Invalid user carina from 112.65.239.124
  43. Jun 22 12:54:34 Acer6 sshd[4135]: Invalid user green from 112.65.239.124
  44. Jun 22 12:54:36 Acer6 sshd[4137]: Invalid user green from 112.65.239.124
  45. Jun 22 12:54:38 Acer6 sshd[4139]: Invalid user manager from 112.65.239.124
  46. Jun 22 12:54:40 Acer6 sshd[4141]: Invalid user dani from 112.65.239.124
  47. Jun 22 12:54:42 Acer6 sshd[4143]: Invalid user demo from 112.65.239.124
  48. Jun 22 12:54:45 Acer6 sshd[4147]: Invalid user andrea from 112.65.239.124
  49. Jun 22 12:54:47 Acer6 sshd[4149]: Invalid user test from 112.65.239.124
  50. Jun 22 12:54:49 Acer6 sshd[4151]: Invalid user jordan from 112.65.239.124
  51. Jun 22 12:54:51 Acer6 sshd[4153]: Invalid user philip from 112.65.239.124
  52. Jun 22 12:54:53 Acer6 sshd[4155]: Invalid user emerson from 112.65.239.124
  53. Jun 22 12:54:54 Acer6 sshd[4157]: Invalid user cvs from 112.65.239.124
  54. Jun 22 12:55:07 Acer6 sshd[4179]: Invalid user site from 112.65.239.124
  55. Jun 22 12:55:09 Acer6 sshd[4181]: Invalid user praktikant from 112.65.239.124
  56. Jun 22 12:55:11 Acer6 sshd[4183]: Invalid user site from 112.65.239.124
  57. Jun 22 12:55:13 Acer6 sshd[4185]: Invalid user ronny from 112.65.239.124
  58. Jun 22 12:55:18 Acer6 sshd[4187]: Invalid user sabrina from 112.65.239.124
  59. Jun 22 12:55:20 Acer6 sshd[4189]: Invalid user augusta from 112.65.239.124
  60. Jun 22 12:55:22 Acer6 sshd[4191]: Invalid user simone from 112.65.239.124
  61. Jun 22 12:55:23 Acer6 sshd[4193]: Invalid user jeff from 112.65.239.124
  62. Jun 22 12:55:25 Acer6 sshd[4195]: Invalid user jeff from 112.65.239.124
  63. Jun 22 12:55:29 Acer6 sshd[4199]: Invalid user pizza from 112.65.239.124
  64. Jun 22 12:55:31 Acer6 sshd[4201]: Invalid user visa from 112.65.239.124
  65. Jun 22 12:55:33 Acer6 sshd[4203]: Invalid user send from 112.65.239.124
  66. Jun 22 12:55:38 Acer6 sshd[4209]: Invalid user diana from 112.65.239.124
  67. Jun 22 12:55:40 Acer6 sshd[4211]: Invalid user giovanni from 112.65.239.124
  68. Jun 22 12:55:42 Acer6 sshd[4213]: Invalid user sonia from 112.65.239.124
  69. Jun 22 12:55:44 Acer6 sshd[4215]: Invalid user jaqueline from 112.65.239.124
  70. Jun 22 12:55:52 Acer6 sshd[4223]: Invalid user src from 112.65.239.124
  71. Jun 22 12:55:54 Acer6 sshd[4225]: Invalid user mailman from 112.65.239.124
  72. Jun 22 12:55:55 Acer6 sshd[4227]: Invalid user info from 112.65.239.124
  73. Jun 22 12:55:58 Acer6 sshd[4229]: Invalid user info from 112.65.239.124
  74. Jun 22 12:55:59 Acer6 sshd[4231]: Invalid user rafael from 112.65.239.124
  75. Jun 22 12:56:04 Acer6 sshd[4233]: Invalid user marcel from 112.65.239.124
  76. Jun 22 12:56:06 Acer6 sshd[4235]: Invalid user carol from 112.65.239.124
  77. Jun 22 12:56:08 Acer6 sshd[4237]: Invalid user daniela from 112.65.239.124
  78. Jun 22 12:56:14 Acer6 sshd[4243]: Invalid user santiago from 112.65.239.124
  79. Jun 22 12:56:15 Acer6 sshd[4245]: Invalid user webmaster from 112.65.239.124
  80. Jun 22 12:56:17 Acer6 sshd[4247]: Invalid user claudia from 112.65.239.124
  81. Jun 22 12:56:20 Acer6 sshd[4249]: Invalid user super from 112.65.239.124
  82. Jun 22 12:56:26 Acer6 sshd[4253]: Invalid user adriana from 112.65.239.124
  83. Jun 22 12:56:28 Acer6 sshd[4255]: Invalid user user from 112.65.239.124
  84. Jun 22 12:56:30 Acer6 sshd[4257]: Invalid user webuser from 112.65.239.124
  85. Jun 22 12:56:34 Acer6 sshd[4261]: Invalid user nagios from 112.65.239.124
  86. Jun 22 12:56:36 Acer6 sshd[4263]: Invalid user nagios from 112.65.239.124
  87. Jun 22 12:56:37 Acer6 sshd[4265]: Invalid user test from 112.65.239.124
  88. Jun 22 12:56:41 Acer6 sshd[4269]: Invalid user view from 112.65.239.124
  89. Jun 22 12:56:43 Acer6 sshd[4271]: Invalid user seven from 112.65.239.124
  90. Jun 22 12:56:45 Acer6 sshd[4273]: Invalid user andy from 112.65.239.124
  91. Jun 22 12:56:46 Acer6 sshd[4275]: Invalid user andy from 112.65.239.124
  92. Jun 22 12:56:48 Acer6 sshd[4277]: Invalid user jerry from 112.65.239.124
  93. Jun 22 12:56:51 Acer6 sshd[4279]: Invalid user ftpuser from 112.65.239.124
  94. Jun 22 12:56:53 Acer6 sshd[4281]: Invalid user administrator from 112.65.239.124
  95. Jun 22 12:56:55 Acer6 sshd[4283]: Invalid user asd from 112.65.239.124
  96. Jun 22 12:56:56 Acer6 sshd[4285]: Invalid user terry from 112.65.239.124
  97. Jun 22 12:57:05 Acer6 sshd[4291]: Invalid user martin from 112.65.239.124
  98. Jun 22 12:57:10 Acer6 sshd[4293]: Invalid user martin from 112.65.239.124
  99. Jun 22 12:57:11 Acer6 sshd[4295]: Invalid user user from 112.65.239.124
  100. Jun 22 12:57:13 Acer6 sshd[4297]: Invalid user jane from 112.65.239.124
  101. Jun 22 12:57:15 Acer6 sshd[4299]: Invalid user test2 from 112.65.239.124
  102. Jun 22 12:57:17 Acer6 sshd[4301]: Invalid user samba from 112.65.239.124
  103. Jun 22 12:57:19 Acer6 sshd[4303]: Invalid user roz from 112.65.239.124
  104. Jun 22 12:57:23 Acer6 sshd[4307]: Invalid user dev from 112.65.239.124
  105. Jun 22 12:57:25 Acer6 sshd[4309]: Invalid user yura from 112.65.239.124
  106. Jun 22 12:57:27 Acer6 sshd[4311]: Invalid user daniel from 112.65.239.124
  107. Jun 22 12:57:28 Acer6 sshd[4313]: Invalid user postgres from 112.65.239.124
  108. Jun 22 12:57:32 Acer6 sshd[4317]: Invalid user orange from 112.65.239.124
  109. Jun 22 12:57:34 Acer6 sshd[4319]: Invalid user dan from 112.65.239.124
  110. Jun 22 12:57:39 Acer6 sshd[4325]: Invalid user linda from 112.65.239.124
  111. Jun 22 12:57:46 Acer6 sshd[4333]: Invalid user plesk-root from 112.65.239.124
  112. Jun 22 12:57:59 Acer6 sshd[4339]: Invalid user ok from 112.65.239.124
  113. Jun 22 12:58:03 Acer6 sshd[4343]: Invalid user demo from 112.65.239.124
  114. Jun 22 12:58:10 Acer6 sshd[4351]: Invalid user ftpuser from 112.65.239.124
  115. Jun 22 12:58:12 Acer6 sshd[4353]: Invalid user t from 112.65.239.124
  116. Jun 22 12:58:14 Acer6 sshd[4355]: Invalid user webadmin from 112.65.239.124
  117. Jun 22 12:58:15 Acer6 sshd[4357]: Invalid user anne from 112.65.239.124
  118. Jun 22 12:58:17 Acer6 sshd[4359]: Invalid user marie from 112.65.239.124
  119. Jun 22 12:58:19 Acer6 sshd[4361]: Invalid user robot from 112.65.239.124
  120. Jun 22 12:58:21 Acer6 sshd[4363]: Invalid user nagios from 112.65.239.124
  121. Jun 22 16:49:55 Acer6 sshd[4759]: Did not receive identification string from 218.108.0.91
  122. Jun 22 16:51:06 Acer6 sshd[4772]: Invalid user shit from 218.108.0.91
  123. Jun 22 16:51:07 Acer6 sshd[4774]: Invalid user postmaster from 218.108.0.91
  124. Jun 22 16:51:09 Acer6 sshd[4776]: Invalid user user from 218.108.0.91
  125. Jun 22 16:51:14 Acer6 sshd[4778]: Invalid user soporte from 218.108.0.91
  126. Jun 22 16:51:16 Acer6 sshd[4780]: Invalid user webadm from 218.108.0.91
  127. Jun 22 16:51:18 Acer6 sshd[4782]: Invalid user info2 from 218.108.0.91
  128. Jun 22 16:51:21 Acer6 sshd[4784]: Invalid user mailing from 218.108.0.91
  129. Jun 22 16:51:25 Acer6 sshd[4788]: Invalid user user from 218.108.0.91
  130. Jun 22 16:51:27 Acer6 sshd[4790]: Invalid user test from 218.108.0.91
  131. Jun 22 16:51:30 Acer6 sshd[4792]: Invalid user postgres from 218.108.0.91
  132. Jun 22 16:51:37 Acer6 sshd[4794]: Invalid user oracle from 218.108.0.91
  133. Jun 22 16:51:39 Acer6 sshd[4796]: Invalid user tomcat from 218.108.0.91
  134. Jun 22 16:51:41 Acer6 sshd[4798]: Invalid user test from 218.108.0.91
  135. Jun 22 16:51:43 Acer6 sshd[4800]: Invalid user postgres from 218.108.0.91
  136. Jun 22 16:51:46 Acer6 sshd[4802]: Invalid user postgres from 218.108.0.91
  137. Jun 22 16:51:48 Acer6 sshd[4804]: Invalid user apache from 218.108.0.91
  138. Jun 22 16:51:49 Acer6 sshd[4806]: Invalid user apache from 218.108.0.91
  139. Jun 22 16:51:52 Acer6 sshd[4808]: Invalid user tuxedo from 218.108.0.91
  140. Jun 22 16:51:57 Acer6 sshd[4810]: Invalid user tuxedo from 218.108.0.91
  141. Jun 22 16:51:58 Acer6 sshd[4812]: Invalid user tuxedo from 218.108.0.91
  142. Jun 22 16:52:00 Acer6 sshd[4814]: Invalid user tuxedo from 218.108.0.91
  143. Jun 22 16:52:02 Acer6 sshd[4816]: Invalid user tuxedo from 218.108.0.91
  144. Jun 22 16:52:06 Acer6 sshd[4818]: Invalid user tuxedo from 218.108.0.91
  145. Jun 22 16:52:07 Acer6 sshd[4820]: Invalid user tuxedo from 218.108.0.91
  146. Jun 22 16:52:16 Acer6 sshd[4822]: Invalid user tuxedo from 218.108.0.91
复制代码
这得多大仇呀?
实战分享:从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线! | 新一代分布式关系型数据库RadonDB知多少?
1234下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 注册

本版积分规则 发表回复

  

北京盛拓优讯信息技术有限公司. 版权所有 京ICP备16024965号-6 北京市公安局海淀分局网监中心备案编号:11010802020122 niuxiaotong@pcpop.com 17352615567
未成年举报专区
中国互联网协会会员  联系我们:huangweiwei@itpub.net
感谢所有关心和支持过ChinaUnix的朋友们 转载本站内容请注明原作者名及出处

清除 Cookies - ChinaUnix - Archiver - WAP - TOP