[unisog] SSH brute force attempts

Erik Olivenza olivenza at fas.harvard.edu
Tue Dec 19 21:45:11 GMT 2006

We've quarantined this system from the network after we were initially 
notified that it might have been compromised:



J. Oquendo wrote:
> FYI the following hosts were logged via an SSH brute force attack:
> ee362-06.engr.CSUFresno.EDU
> ee362-11.engr.CSUFresno.EDU
> LJJMD1.bio.pitt.edu
> michelson.physics.harvard.edu
> pestxlin.rh.rit.edu
> Any admins of these networks might want to check for compromise or pass along the information. If timestamp information, etc is needed please contact me offlist
> _______________________________________________
> unisog mailing list
> unisog at lists.dshield.org
> https://lists.sans.org/mailman/listinfo/unisog

Erik Olivenza
Computer Accounts and Security Liaison
FAS Computer Services, Harvard University
Office: 617.495.9359
Fax: 617.495.1210

More information about the unisog mailing list