Date: Tue, 16 Sep 2003 12:41:14 -0600 From: Brett Glass <brett@lariat.org> To: "Jacques A. Vidrine" <nectar@freebsd.org>, freebsd-security@freebsd.org Subject: Re: OpenSSH heads-up Message-ID: <4.3.2.7.2.20030916123558.02cfdef0@localhost> In-Reply-To: <20030916134347.GA30359@madman.celabo.org>
next in thread | previous in thread | raw e-mail | index | archive | help
At 07:43 AM 9/16/2003, Jacques A. Vidrine wrote: >OK, an official OpenSSH advisory was released, see here: ><URL: http://www.mindrot.org/pipermail/openssh-unix-announce/2003-September/000063.html>; Interesting. During the past 48 hours, we've been probed several times by hosts that connected to each of our servers on Port 22 and then disconnected without authenticating. (They were probably just looking for the greeting.) For example: Sep 14 11:18:54 www sshd[16658]: fatal: Timeout before authentication for 62.107.50.87. The source of the probes appears to be in Denmark. Could it be that some party or parties knew about this before the announcement and is probing for hosts to exploit? --Brett Glass
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.3.2.7.2.20030916123558.02cfdef0>