[Intrusions] SSH brute force attacks
Richard Golodner
RGolodner at Aetea.com
Thu Sep 1 13:51:55 GMT 2005
I think the point was made earlier and seems valid that the majority of the
world's population is distributed through out that part of the globe, hence
the majority of attacks could be attributed to the increased density of the
population in those areas.
Richard
-----Original Message-----
From: Isaac Perez [mailto:suscripcions at tsolucio.com]
Sent: Tuesday, August 30, 2005 11:34 AM
To: Intrusions List (GCIA Practicals)
Subject: Re: [Intrusions] SSH brute force attacks
The majority of servers compromised in this countries hasn't any form to
notify their abuses.
Every day I notify to the abuse team of the network that attacks my
servers, if I can, of course.
I know that very little portion of the networks in this countries have
an abuse team, or the abuse team respond my emails..
Maybe that's a reason.
That happen in a lot of ISP around the world, but I think there are more
that don't worry about their servers.
El sáb, 27-08-2005 a las 11:36 +0200, Luc Pauwels escribió:
> Just wondering...
>
> I've noticed that the majority of SSH brute force attacks on our systems
seem to
> originate from Asia (India, China, Korea). Is this just a coincidence, or
is
> there more going on?
>
> Rgrds,
> Luc
> _______________________________________________
> Intrusions mailing list
> Intrusions at lists.sans.org
> http://www.dshield.org/mailman/listinfo/intrusions
_______________________________________________
Intrusions mailing list
Intrusions at lists.sans.org
http://www.dshield.org/mailman/listinfo/intrusions
More information about the Intrusions
mailing list