mfwl
New member
We have had the logs through on several occasions from cPanel (logwatch) that tells us we have over 2000 'Unknown' failed logins.
Is someone attempting to hack our server? I shall post the worrying part of that email below and see if anyone here can let us know what to do about it or if we are worrying about nothing?
Regards
Matt :shaky::shaky::shaky:
--------------------- SSHD Begin ------------------------
Failed logins from:
60.220.218.88: 2750 times
203.114.112.99 (203-114-112-99.totisp.net): 32 times
Illegal users from:
60.220.218.88: 6470 times
Received disconnect:
11: Bye Bye : 9252 Time(s)
**Unmatched Entries**
pam_succeed_if(sshd:auth): error retrieving information about user subhadeep : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user danna : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user dchakrabarti : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user space : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user diablo : 12 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user boris : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user paradise : 11 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user webmaster : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user cmcoperator : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user craig : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user usr : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user sacvishal : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user magdalena : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user 123 : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user jyotprasaddeka : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user ihqmoddnom : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user hom : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user simbol : 10 time(s)
Cont.
Is someone attempting to hack our server? I shall post the worrying part of that email below and see if anyone here can let us know what to do about it or if we are worrying about nothing?
Regards
Matt :shaky::shaky::shaky:
--------------------- SSHD Begin ------------------------
Failed logins from:
60.220.218.88: 2750 times
203.114.112.99 (203-114-112-99.totisp.net): 32 times
Illegal users from:
60.220.218.88: 6470 times
Received disconnect:
11: Bye Bye : 9252 Time(s)
**Unmatched Entries**
pam_succeed_if(sshd:auth): error retrieving information about user subhadeep : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user danna : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user dchakrabarti : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user space : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user diablo : 12 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user boris : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user paradise : 11 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user webmaster : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user cmcoperator : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user craig : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user usr : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user sacvishal : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user magdalena : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user 123 : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user jyotprasaddeka : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user ihqmoddnom : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user hom : 10 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user simbol : 10 time(s)
Cont.