[unisog] SSH brute force attempts

Erik Olivenza olivenza at fas.harvard.edu
Tue Dec 19 21:45:11 GMT 2006


We've quarantined this system from the network after we were initially 
notified that it might have been compromised:

michelson.physics.harvard.edu

Thanks,
Erik

J. Oquendo wrote:
> FYI the following hosts were logged via an SSH brute force attack:
>
> ee362-06.engr.CSUFresno.EDU
> ee362-11.engr.CSUFresno.EDU
> LJJMD1.bio.pitt.edu
> michelson.physics.harvard.edu
> pestxlin.rh.rit.edu
>
> Any admins of these networks might want to check for compromise or pass along the information. If timestamp information, etc is needed please contact me offlist
>
>
>
> _______________________________________________
> unisog mailing list
> unisog at lists.dshield.org
> https://lists.sans.org/mailman/listinfo/unisog
>
>   

-- 
Erik Olivenza
Computer Accounts and Security Liaison
FAS Computer Services, Harvard University
Office: 617.495.9359
Fax: 617.495.1210



More information about the unisog mailing list