There's no reason Magnolia itself would open ssh connections. Have you
been able to identify on what ports these occur? Could these be mails
or activation requests?
-g
On Oct 13, 2008, at 7:59 AM, Nitesh Ambuj wrote:
Our magnolia server is generating tons of outbound ssh connections
to public
internet which has been captured as ssh-brute force attack at some
other
company's firewall. This is also reported as a critical incident of
IP abuse
and we had received an alert notification from the provider as to
resolve
this issue at the earliest.
As an immediate action we have blocked all outbound SSH access for our
magnolia system.
Now, I wanted to understand that, is it a problem related to
Magnolia Server
(ours running on Linux) or are we doing something wrong at
application /
configuration level.
Thanks & Regards,
Nitesh Ambuj
----------------------------------------------------------------
for list details see
http://documentation.magnolia.info/
----------------------------------------------------------------
----------------------------------------------------------------
for list details see
http://documentation.magnolia.info/
----------------------------------------------------------------
