Should be in the security event log if you have failures turned on.
On Oct 31, 2010, at 2:11 PM, Dimitrios Kapsalis <[email protected]> wrote: > Hey all, > > One of my xp home boxes is being bruteforce scanned on ssh port. Anyway to > interface with event viewer to harvest source IP addresses and usernames > attackers are using? > > > > Sent from my iPhone > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
