So I recently set up a server, installed lamp and configured it so i can remote access when i need to. I've only had this server online for a few days and it's already been attacked. I've got an endless log file full of failed ssh connections and a few suspicious apache requests. I've got denyHosts running now so i'm hoping that will limit the ssh problem. My question is, are attacks really this common? or could I be somehow advertising myself in a way that i shouldn't?
Goatboy wrote:Oh, that's simple. All you need to do is dedicate many years of your life to studying security.
IF you feel like exchanging ASCII arrays, let me know ;)
pretentious wrote:Welcome to bat country