February 16th, 2005
Someone be tryin to hack me boxen!
test/password from ::ffff:18.104.22.168: 20 Time(s)
test/password from ::ffff:22.214.171.124: 3 Time(s)
They tried about 100 different accounts, some as many as 20-30 times.
if test/password doesn't work the first time, it ain't gonna work the second time let alone the 23rd.
|Date:||February 16th, 2005 03:42 pm (UTC)|| |
How does one go about tracing something like that?
them IP addresses is all you really got to go on.
^ If the hacker had any brains, he was using an anonymous proxy and I won't get very far.
^ If it was a moron, that'll tell me who their ISP is. If I were the bitchy sort I could phone up the ISP and make the loser's life hell. (Or at least get his account canceled.)
^ If it's a really stupid person, that'll track back all the way to their machine, and I could suitably harass them for all eternity.
This isn't uncommon though, my server gets a number of hack attempts every day. I'll post some of the logs on a filter for you if you're interested. There's no point in following up on these things, they didn't get into the system, and even if they did there's not much there they could do except hose the system. No Credit Card info, no bank account numbers, etc.
Any idea why someone wants to hack you?
I have about 7 domains hosted on there, people will try to hack any domain they come across. might even just be some automated thing running on some chinese mafia computer somewhere.
Makes me wonder if anyones hacking me.
Not that i own any domains.
|Date:||February 16th, 2005 06:23 pm (UTC)|| |
Ahh little script kiddies.. fun fun.. Sin5 holds 5 or so domains with quiote a few subs and gets this a few times every week on ftp. Which got disabled on the router a few days ago by me. Got tired of looking at it.
Also to Komos, even if he traced it this is probably a rooted machine. So he would alert one admin to something and then trace from there.. if that admin was kind enough to help.
To Road_to_hell, being around ppl who did this for "fun." It was as status thing to get a line count on the number of rooted machines you have and show that off. Most I've seen for one person was a little over 400 servers.