-----Original Message----- From: Steven Stern [mailto:subscribed-lists@sterndata.com] Sent: Wednesday, August 4, 2004 02:37 PM To: 'For users of Fedora Core releases' Subject: Re: MORE SSH Hacking: heads-up On Wed, 4 Aug 2004 10:25:05 -0400, jeem machine <jmachine(a)gmail.com&gt; wrote: >On Wed, 04 Aug 2004 08:25:36 -0500, Steven Stern &gt;&lt;subscribed-lists(a)sterndata.com&gt; wrote: >> On Tue, 03 Aug 2004 21:40:18 -0700, Ow Mun Heng <Ow.Mun.Heng(a)wdc.com&gt; wrote: >> >> My logs from last night: >> >> Failed logins from these: >> guest/password from ::ffff:143.107.235.116: 1 Time(s) >> guest/password from ::ffff:211.105.46.30: 1 Time(s) >> test/password from ::ffff:143.107.235.116: 1 Time(s) >> test/password from ::ffff:211.105.46.30: 1 Time(s) >> >> Illegal users from these: >> guest/none from ::ffff:143.107.235.116: 1 Time(s) >> guest/none from ::ffff:211.105.46.30: 1 Time(s) >> guest/password from ::ffff:143.107.235.116: 1 Time(s) >> guest/password from ::ffff:211.105.46.30: 1 Time(s) >> test/none from ::ffff:143.107.235.116: 1 Time(s) >> test/none from ::ffff:211.105.46.30: 1 Time(s) >> test/password from ::ffff:143.107.235.116: 1 Time(s) >> test/password from ::ffff:211.105.46.30: 1 Time(s) >> > >> >Which logs are you looking at. I would like to check my system The snipped above comes from the nightly logwatch run, mailed to root. Logwatch searches through /var/log/secure* -- Steve -- fedora-list mailing list fedora-list(a)redhat.com To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list