-------- Original Message --------
On 4 Oct 2017, 07:02, Fr33d0m4all wrote: Hi, My Tor middle relay public IP
address is victim of SSH brute force connections’ attempts
Welcome to the Internet!
Any Internet connected machine will be port scanned, vuln probed, brute forced,
blindly hit with ancient "1 shot" exploits (think wordpress plugins) and
trawled for include vulnerabilities (e.g. ?file=../../../etc/passwd ) on a
daily basis.
It's not normally something to worry about.
Disable root login, enable certificate authentication and if you feel
particularly strongly about the log noise firewall off TCP/22 or move sshd to a
high numbered port.
_______________________________________________
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
