« 男脳と女脳 | メイン | 行った事のある都道府県 »

September 28, 2004

SSHによる不正アクセス その2

昨日、新たなSSHアタックを検出しました。今度は、前回のSSHアタックよりも網羅的なのが特徴だ。

Failed logins from these:
Administrator/password from 220.107.72.132: 1 Time(s)
accounting/password from 220.107.72.132: 1 Time(s)
adm/password from 220.107.72.132: 1 Time(s)
admin/password from 220.107.72.132: 4 Time(s)
administrator/password from 220.107.72.132: 1 Time(s)
anon/password from 220.107.72.132: 1 Time(s)
apache/password from 220.107.72.132: 1 Time(s)
boss/password from 220.107.72.132: 1 Time(s)
checkfs/password from 220.107.72.132: 1 Time(s)
cisco/password from 220.107.72.132: 6 Time(s)
client/password from 220.107.72.132: 1 Time(s)
cvs/password from 220.107.72.132: 1 Time(s)
debug/password from 220.107.72.132: 1 Time(s)
dni/password from 220.107.72.132: 1 Time(s)
echo/password from 220.107.72.132: 1 Time(s)
fal/password from 220.107.72.132: 1 Time(s)
fax/password from 220.107.72.132: 1 Time(s)
ftp/password from 220.107.72.132: 1 Time(s)
games/password from 220.107.72.132: 1 Time(s)
gnats/password from 220.107.72.132: 1 Time(s)
gopher/password from 220.107.72.132: 1 Time(s)
guest/password from 220.107.72.132: 1 Time(s)
intel/password from 220.107.72.132: 1 Time(s)
kermit/password from 220.107.72.132: 1 Time(s)
login/password from 220.107.72.132: 1 Time(s)
lp/password from 220.107.72.132: 1 Time(s)
lynx/password from 220.107.72.132: 1 Time(s)
mail/password from 220.107.72.132: 1 Time(s)
man/password from 220.107.72.132: 1 Time(s)
manager/password from 220.107.72.132: 1 Time(s)
master/password from 220.107.72.132: 1 Time(s)
monitor/password from 220.107.72.132: 1 Time(s)
mysql/password from 220.107.72.132: 1 Time(s)
netscreen/password from 220.107.72.132: 1 Time(s)
news/password from 220.107.72.132: 1 Time(s)
nobody/password from 220.107.72.132: 1 Time(s)
operator/password from 220.107.72.132: 2 Time(s)
oracle/password from 220.107.72.132: 1 Time(s)
postgres/password from 220.107.72.132: 1 Time(s)
postmaster/password from 220.107.72.132: 1 Time(s)
qsvr/password from 220.107.72.132: 1 Time(s)
root/password from 220.107.72.132: 8 Time(s)
security/password from 220.107.72.132: 1 Time(s)
sync/password from 220.107.72.132: 1 Time(s)
sys/password from 220.107.72.132: 1 Time(s)
sysadmin/password from 220.107.72.132: 2 Time(s)
sysop/password from 220.107.72.132: 1 Time(s)
tech/password from 220.107.72.132: 1 Time(s)
test/password from 220.107.72.132: 6 Time(s)
user/password from 220.107.72.132: 1 Time(s)
uucp/password from 220.107.72.132: 1 Time(s)
www/password from 220.107.72.132: 1 Time(s)

相手はOCNのアドレスからなのだけど、乗っ取られたサーバかもしれない。とりあえず、OCNへ通報予定。

投稿者 blog@tsukuba : September 28, 2004 07:32 AM

トラックバック

このエントリーのトラックバックURL:
http://tetralog.in/mt/mt-tb.cgi/76

コメント

関連する書籍