[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y ] [Search | Free Show | Home]

Multiple login attempts from Chinese IPv4 every minute, how can

This is a blue board which means that it's for everybody (Safe For Work content only). If you see any adult content, please report it.
  1. Home
  2. /g/ - Technology
  3. Multiple login attempts from Chinese IPv4 every minute, how can
Thread replies: 20
Thread images: 3

Every goddamn minute
2017-03-13 05:36:33 Post No. 59377080
[Report] Image search: [Google]
File: chinamen.png (145KB, 2072x348px) Image search: [Google]
chinamen.png
145KB, 2072x348px
Every goddamn minute 2017-03-13 05:36:33 Post No. 59377080 [Report]
Multiple login attempts from Chinese IPv4 every minute, how can it be cost-effective to operate these bots? Who leaves valuable things vulnerable to password bots in 2017? Pic related.
>>
Anonymous 2017-03-13 05:37:42 Post No.59377094
[Report]
Anonymous 2017-03-13 05:37:42 Post No.59377094 [Report]
I don't understand. What is happening?
>>
Anonymous 2017-03-13 05:40:17 Post No.59377115
[Report]
Anonymous 2017-03-13 05:40:17 Post No.59377115 [Report]
This is from the auth log of my server, which hosts no publicly available things and has no real traffic. It gets thousands of failed login attempts from Chinese IP addresses every day.
>>
Anonymous 2017-03-13 05:47:07 Post No.59377176
[Report]
Anonymous 2017-03-13 05:47:07 Post No.59377176 [Report]
>be chink teen
>use elders wifi to bruteforce burgerland retards
>applesauce123, lovechad2017, mydogsnameijustpastedonfacebook
>?????
>pRoFiT

>notcost efficient
lol brainlet
>>
Anonymous 2017-03-13 05:51:25 Post No.59377232
[Report]
Anonymous 2017-03-13 05:51:25 Post No.59377232 [Report]
>>59377080
>how can it be cost-effective to operate these bots?
Botnets are free for the owner
>>
Anonymous 2017-03-13 05:58:15 Post No.59377306
[Report]
Anonymous 2017-03-13 05:58:15 Post No.59377306 [Report]
>>59377080
>how can it be cost-effective
Botnets are cheap. Like, really cheap. Like, "Here's some pocket change quarters for years of compute time" cheap.
>>
Anonymous 2017-03-13 06:04:41 Post No.59377369
[Report]
Anonymous 2017-03-13 06:04:41 Post No.59377369 [Report]
>>59377306

Wow, I didn't realize it was that inexpensive. Thanks for the perspective, I'm still baffled by the number of login attempts from one city though.
>>
Anonymous 2017-03-13 06:13:14 Post No.59377473
[Report]
Anonymous 2017-03-13 06:13:14 Post No.59377473 [Report]
>rename root to moot
problem solved
>>
Anonymous 2017-03-13 06:46:22 Post No.59377831
[Report]
Anonymous 2017-03-13 06:46:22 Post No.59377831 [Report]
Just install fail2ban, disable root login from SSH and consider using key based authentication
>>
Anonymous 2017-03-13 06:49:03 Post No.59377856
[Report]
Anonymous 2017-03-13 06:49:03 Post No.59377856 [Report]
>>59377473
who the fuck is moot?
>>
Anonymous 2017-03-13 07:51:59 Post No.59378487
[Report]
Anonymous 2017-03-13 07:51:59 Post No.59378487 [Report]
>>59377080
>What is fail2ban.
>>
Anonymous 2017-03-13 07:55:10 Post No.59378508
[Report]
Anonymous 2017-03-13 07:55:10 Post No.59378508 [Report]
>>59377831
is there a way to make fail2ban or equivalent not wait for three failures if someone tries "root" as the username? If you have root login disabled anyone trying to log in as that can be assumed to be malicious and booted immediately.
>>
Anonymous 2017-03-13 07:58:35 Post No.59378549
[Report]
Anonymous 2017-03-13 07:58:35 Post No.59378549 [Report]
>>59377856
Don't say the Lord's name in vain.
>>
Anonymous 2017-03-13 08:54:25 Post No.59379087
[Report]
Anonymous 2017-03-13 08:54:25 Post No.59379087 [Report]
>>59377080
Order expensive things from gearbest and do a chargeback with your credit card company. They speak such bad English they can't even dispute it. Fuck chinks.
>>
Anonymous 2017-03-13 08:58:22 Post No.59379122
[Report] Image search: [Google]
Anonymous 2017-03-13 08:58:22 Post No.59379122 [Report]
>>59377080
Change your SSH port and enable public key only authentication, retard.
>>
Anonymous 2017-03-13 09:02:43 Post No.59379168
[Report]
Anonymous 2017-03-13 09:02:43 Post No.59379168 [Report]
I changed to port <secret> on my ssh just because of this.
>>
Anonymous 2017-03-13 09:05:53 Post No.59379188
[Report]
Anonymous 2017-03-13 09:05:53 Post No.59379188 [Report]
They say security through obscurity is a bad idea, I say, port knocking gets rid of literally every single bot on the internet.
>>
Anonymous 2017-03-13 09:07:19 Post No.59379198
[Report] Image search: [Google]
Anonymous 2017-03-13 09:07:19 Post No.59379198 [Report]
File: moot_with_cowboy_hat.jpg (63KB, 600x600px) Image search: [Google]
moot_with_cowboy_hat.jpg
63KB, 600x600px
>>59377856
Hes that guy that went nuts and killed a bunch of niggers.
>>
Anonymous 2017-03-13 09:09:41 Post No.59379217
[Report]
Anonymous 2017-03-13 09:09:41 Post No.59379217 [Report]
>>59377115
make sure to ALWAYS disable root ssh access... make an account named "faggot" and login via that.. then once logged in switch to root account...

How many IP addresses are there? I'd guess about 15 million give or take. I'd say there are many machines going around trying to bruteforce ssh into the root accounts of the 15 million IP's that exist.
>>
Anonymous 2017-03-13 09:15:52 Post No.59379278
[Report]
Anonymous 2017-03-13 09:15:52 Post No.59379278 [Report]
>>59379122
>Change your SSH port
also run a tarpitting fake sshd on the default port
Thread posts: 20
Thread images: 3
[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y] [Search | Top | Home]

I'm aware that Imgur.com will stop allowing adult images since 15th of May. I'm taking actions to backup as much data as possible.
Read more on this topic here - https://archived.moe/talk/thread/1694/


If you need a post removed click on it's [Report] button and follow the instruction.
DMCA Content Takedown via dmca.com
All images are hosted on imgur.com.
If you like this website please support us by donating with Bitcoins at 16mKtbZiwW52BLkibtCr8jUg2KVUMTxVQ5
All trademarks and copyrights on this page are owned by their respective parties.
Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
This is a 4chan archive - all of the content originated from that site.
This means that RandomArchive shows their content, archived.
If you need information for a Poster - contact them.