First of all, shout-out to one of my most-referenced linux tutorials: http://www.codelitt.com/blog/my-first-10-minutes-on-a-server-primer-for-securing-ubuntu/
I basically go through all these steps every time I spin up a new server. It’s a pretty good setup.
One of the nice things about
logwatch is that it tells me the IP addresses of everyone trying to break into my SSH. It also tells me the usernames they tried to use.
In the interest of humor and curiousity, I’d like to dump that list here and lol at some of the entries.
Let’s lol together!
connor soporte admin 0 101 1111 123 22 starmade pi public appltest pi botmaster postgres ronald simran steven test tomcat weblogic bot csgoserver a butter centos csgo desktop gpadmin jenkins vagrant jobs test2 groupoffice wwUser senthil TFS oracle keith dmcgimpsey