Hi I am not sure if I have found a bug or exploit or what I have found, but
here is an entry I found in my secure logs multiple times

Sep 9 17:00:44 www webmin[8685]: Non-existent login as a a 1 new 1234567890
root from fordf350.never-enuff.net

and I have also found a user root@notty logged in, I have disabled sshd for
now until i find out whats going on, could anyone please tell me if this is
a bug or exploit and if so, how to avoid it.

My System is Mandrake 10.1
2.6.8.1-12mdk-i586-up-1GB
OpenSSH_4.3p1, OpenSSL 0.9.7d 17 Mar 2004

Anything else that i can provide to help?

Thnx

Dickie Bradford
------------------------------------------------------------
(A)bort, (R)etry, (S)mack the @#$&*~ thing!
------------------------------------------------------------



No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.5.485 / Virus Database: 269.13.13/998 - Release Date: 9/10/2007
8:48 AM

_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
https://lists.mindrot.org/mailman/li...enssh-unix-dev