由於它們裝設地點距離我工作的地方太遠,
所以我打開了 sshd 以便於日後的管理。
才不過剛上線幾小時,
Auth Log 裡就塞滿了一大堆類似的訊息:
- 代碼: 選擇全部
Dec 4 22:18:20 dns sshd[19096]: User nobody not allowed because not listed in AllowUsers
Dec 4 22:18:21 dns sshd[19098]: Illegal user patrick from ::ffff:211.72.82.178
Dec 4 22:18:22 dns sshd[19100]: Illegal user patrick from ::ffff:211.72.82.178
Dec 4 22:18:22 dns sshd[19102]: User root not allowed because not listed in AllowUsers
Dec 4 22:18:23 dns sshd[19104]: User root not allowed because not listed in AllowUsers
Dec 4 22:18:24 dns sshd[19106]: User root not allowed because not listed in AllowUsers
Dec 4 22:18:25 dns sshd[19108]: User root not allowed because not listed in AllowUsers
Dec 4 22:18:26 dns sshd[19110]: User root not allowed because not listed in AllowUsers
Dec 4 22:18:27 dns sshd[19112]: Illegal user rolo from ::ffff:211.72.82.178
現在的人是不是太閒了?
而廣告信也不遑多讓,
光是上線的最初 12 小時就湧入了近 4,000 封的廣告信,
真是討人厭...
但我比較擔心的是 sshd 在 LOG 裡所記錄的資訊:
- 代碼: 選擇全部
Dec 4 22:18:20 dns sshd[19096]: reverse mapping checking getaddrinfo for 211-72-82-178.hinet-ip.hinet.net failed - POSSIBLE BREAKIN ATTEMPT!
請問這是什麼意思呀?
