请问ubuntu7.04中ssh日志在哪里?
-
cmwfox
- 帖子: 40
- 注册时间: 2007-02-26 11:09
请问ubuntu7.04中ssh日志在哪里?
请问ubuntu7.04中ssh日志在哪里?
-
bones7456
- 帖子: 8495
- 注册时间: 2006-04-12 20:05
- 来自: 杭州
- 联系:
-
9981
- 帖子: 200
- 注册时间: 2007-05-19 16:24
关于ssh的log
请问:在/var/log/auth.log中,下面的记录是哪一种等级的风险阿?
.............
Dec 19 18:50:09 ubuntu sshd[4167]: Failed password for invalid user bind from 222.69.93.27 port 48656 ssh2
Dec 19 18:50:09 ubuntu sshd[4169]: Invalid user test from 222.69.93.27
Dec 19 18:50:09 ubuntu sshd[4169]: (pam_unix) check pass; user unknown
Dec 19 18:50:09 ubuntu sshd[4169]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27
Dec 19 18:50:11 ubuntu sshd[4169]: Failed password for invalid user test from 222.69.93.27 port 49595 ssh2
Dec 19 18:50:12 ubuntu sshd[4171]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27 user=root
Dec 19 18:50:14 ubuntu sshd[4171]: Failed password for root from 222.69.93.27 port 50470 ssh2
Dec 19 18:50:14 ubuntu sshd[4173]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27 user=root
Dec 19 18:50:17 ubuntu sshd[4173]: Failed password for root from 222.69.93.27 port 50621 ssh2
Dec 19 18:50:17 ubuntu sshd[4175]: Invalid user user from 222.69.93.27
Dec 19 18:50:17 ubuntu sshd[4175]: (pam_unix) check pass; user unknown
Dec 19 18:50:17 ubuntu sshd[4175]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27
Dec 19 18:50:19 ubuntu sshd[4175]: Failed password for invalid user user from 222.69.93.27 port 51746 ssh2
Dec 19 18:50:19 ubuntu sshd[4177]: Invalid user admin from 222.69.93.27
Dec 19 18:50:19 ubuntu sshd[4177]: (pam_unix) check pass; user unknown
Dec 19 18:50:19 ubuntu sshd[4177]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27
Dec 19 18:50:21 ubuntu sshd[4177]: Failed password for invalid user admin from 222.69.93.27 port 52663 ssh2
Dec 19 18:50:21 ubuntu sshd[4179]: Invalid user administrator from 222.69.93.27
Dec 19 18:50:21 ubuntu sshd[4179]: (pam_unix) check pass; user unknown
Dec 19 18:50:21 ubuntu sshd[4179]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27
Dec 19 18:50:24 ubuntu sshd[4179]: Failed password for invalid user administrator from 222.69.93.27 port 53593 ssh2
Dec 19 18:50:24 ubuntu sshd[4181]: Invalid user operator from 222.69.93.27
Dec 19 18:50:24 ubuntu sshd[4181]: (pam_unix) check pass; user unknown
Dec 19 18:50:24 ubuntu sshd[4181]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27
...............
多谢!
.............
Dec 19 18:50:09 ubuntu sshd[4167]: Failed password for invalid user bind from 222.69.93.27 port 48656 ssh2
Dec 19 18:50:09 ubuntu sshd[4169]: Invalid user test from 222.69.93.27
Dec 19 18:50:09 ubuntu sshd[4169]: (pam_unix) check pass; user unknown
Dec 19 18:50:09 ubuntu sshd[4169]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27
Dec 19 18:50:11 ubuntu sshd[4169]: Failed password for invalid user test from 222.69.93.27 port 49595 ssh2
Dec 19 18:50:12 ubuntu sshd[4171]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27 user=root
Dec 19 18:50:14 ubuntu sshd[4171]: Failed password for root from 222.69.93.27 port 50470 ssh2
Dec 19 18:50:14 ubuntu sshd[4173]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27 user=root
Dec 19 18:50:17 ubuntu sshd[4173]: Failed password for root from 222.69.93.27 port 50621 ssh2
Dec 19 18:50:17 ubuntu sshd[4175]: Invalid user user from 222.69.93.27
Dec 19 18:50:17 ubuntu sshd[4175]: (pam_unix) check pass; user unknown
Dec 19 18:50:17 ubuntu sshd[4175]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27
Dec 19 18:50:19 ubuntu sshd[4175]: Failed password for invalid user user from 222.69.93.27 port 51746 ssh2
Dec 19 18:50:19 ubuntu sshd[4177]: Invalid user admin from 222.69.93.27
Dec 19 18:50:19 ubuntu sshd[4177]: (pam_unix) check pass; user unknown
Dec 19 18:50:19 ubuntu sshd[4177]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27
Dec 19 18:50:21 ubuntu sshd[4177]: Failed password for invalid user admin from 222.69.93.27 port 52663 ssh2
Dec 19 18:50:21 ubuntu sshd[4179]: Invalid user administrator from 222.69.93.27
Dec 19 18:50:21 ubuntu sshd[4179]: (pam_unix) check pass; user unknown
Dec 19 18:50:21 ubuntu sshd[4179]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27
Dec 19 18:50:24 ubuntu sshd[4179]: Failed password for invalid user administrator from 222.69.93.27 port 53593 ssh2
Dec 19 18:50:24 ubuntu sshd[4181]: Invalid user operator from 222.69.93.27
Dec 19 18:50:24 ubuntu sshd[4181]: (pam_unix) check pass; user unknown
Dec 19 18:50:24 ubuntu sshd[4181]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.69.93.27
...............
多谢!
9981 学习的过程
http://abcde.blog.ubuntu.org.cn/
blog上的都是原来学习时的记录,现在来看,还需重新整理
ubuntu-server-8.04-lts
我想在日常的工作和生活中应该更多的使用linux
绝对新手
学以致用
http://abcde.blog.ubuntu.org.cn/
blog上的都是原来学习时的记录,现在来看,还需重新整理
ubuntu-server-8.04-lts
我想在日常的工作和生活中应该更多的使用linux
绝对新手
学以致用
-
linuxafan
- 帖子: 11
- 注册时间: 2008-01-26 10:24
- 来自: 8888888888
- 联系: