Ping a Specific Port

Question

Jonathan Hendler

Asked: 2009-09-18 10:32:33 +0800 CST2009-09-18 10:32:33 +0800 CST 2009-09-18 10:32:33 +0800 CST

ssh failed logins /var/log/btmp

772

On a VPS where I host some blogs /var/log/btmp file is fairly old - but is at 6.2 gigs.

I assume this means a lot of failed login attempts? Is this common over the course of a year ? Bots trying to get server access?

2 Answers

Voted

Josh Budde · Answer 1 · 2009-09-18T11:17:21+08:00

Best Answer

Josh Budde

2009-09-18T11:17:21+08:002009-09-18T11:17:21+08:00

If you would like to rotate that log every month you can try add the below code to /etc/logrotate.conf

/var/log/btmp {
monthly
minsize 1M
create 0600 root utmp
rotate 1
}

2

Devin Ceartas · Answer 2 · 2009-09-18T10:39:38+08:00

Devin Ceartas

2009-09-18T10:39:38+08:002009-09-18T10:39:38+08:00

I'm not familiar with the system which keeps it's ssh login info in that file (mine is in /var/log/authlog) but yes, automated attempts to log into ssh is a common part of what I consider the "background noise" of the internet. Often changing the port ssh listens on can cut this log clutter down considerably, though it's important not to confuse that with making your server more secure from a purposeful entry attempt.

1

ssh failed logins /var/log/btmp

Ping a Specific Port

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What's the command-line utility in Windows to do a reverse DNS look-up?

How to check if a port is blocked on a Windows machine?

What port should I open to allow remote desktop?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?