Whitehill
Registered
A couple of weeks ago, as an experiment, I opened port 22 on my router and turned on remote login on my iMac. It worked great. From an external system, I could ssh to my Mac. Just what I hoped for. So I left things like that.
A couple days later, my Mac was really unresponsive. Looking at the console, I found zillions of messages from sshd (remote login server) about failed login attempts. Really, about a dozen per second. So I turned off remote login. The messages helpfully list the IP address of the perp. "whois" tells me it's in China.
About a week ago, I turned it on again and, after a while, the attempts started up again - from the same IP.
If these bozos are wasting so much bandwidth on little ole' me, it makes me wonder what happens to the big boys.
The path through my router is from outer port 22 to inner port 22. I can change the outer port to, say, 22222. Since I'm the only user, I can live with it. Maybe I'll discover if my Chinese friend is pounding all 64K ports.
A couple days later, my Mac was really unresponsive. Looking at the console, I found zillions of messages from sshd (remote login server) about failed login attempts. Really, about a dozen per second. So I turned off remote login. The messages helpfully list the IP address of the perp. "whois" tells me it's in China.
About a week ago, I turned it on again and, after a while, the attempts started up again - from the same IP.
If these bozos are wasting so much bandwidth on little ole' me, it makes me wonder what happens to the big boys.
The path through my router is from outer port 22 to inner port 22. I can change the outer port to, say, 22222. Since I'm the only user, I can live with it. Maybe I'll discover if my Chinese friend is pounding all 64K ports.