Hi Friends !
i think i was trying to explore a possiblity of sending a virus from irc client (firefox based chatzilla) failed but after that (?)i was not able to acess ssh
it was disbled (yes it was disbale )i restart from Managemnt>>system setting >>shell acess>>
httpd.log:2009:07:12-18:19:55 ace75 httpd: 192.168.2.222 - - [12/Jul/2009:18:19:55 +0530] "GET /var/IWYGgbMrrIkIyIZvVlxn/downloads/singlelogfile/sshd.log HTTP/1.1" 200 187
httpd.log:2009:07:12-18:24:10 ace75 httpd: 192.168.2.222 - - [12/Jul/2009:18:24:10 +0530] "GET /var/LzPTsOfcCghPoEyRvWis/downloads/singlelogfile/sshd.log HTTP/1.1" 200 207
2009:07:12-13:05:25 (none) sshd[3218]: Received SIGHUP; restarting.
2009:07:12-13:05:25 (none) sshd[3586]: Server listening on 0.0.0.0 port 22.
2009:07:12-13:55:18 ace75 sshd[3586]: Received signal 15; terminating.
2009:07:12-14:10:42 (none) sshd[3143]: Server listening on 0.0.0.0 port 22.
2009:07:12-14:10:55 (none) sshd[3143]: Received SIGHUP; restarting.
2009:07:12-14:10:55 (none) sshd[3531]: Server listening on 0.0.0.0 port 22.
2009:07:12-18:21:54 (none) sshd[3143]: Server listening on 0.0.0.0 port 22.
2009:07:12-18:22:07 (none) sshd[3143]: Received SIGHUP; restarting.
2009:07:12-18:22:07 (none) sshd[3546]: Server listening on 0.0.0.0 port 22.
2009:07:12-18:25:48 ace75 sshd[4734]: Accepted password for loginuser from 192.168.2.222 port 3214 ssh2
otherwise it was working fine
Thanks
edit/update
seems dupe after reading this ----www.astaro.org/.../26917-7-470-bug-open-ips-blocks-ssh.html
i try to search ips log does this help you
2009:07:12-13:09:50 ace75 snort[4673]: Loading dynamic preprocessor library /usr/lib/snort/libsf_ssh_preproc.so...
2009:07:12-14:10:56 (none) snort[3519]: Loading dynamic preprocessor library /usr/lib/snort/libsf_ssh_preproc.so...
2009:07:12-18:22:09 (none) snort[3516]: Loading dynamic preprocessor library /usr/lib/snort/libsf_ssh_preproc.so...
