Hi there…
I have noticed a hi amount of login tries in my WD,
here is a log file
xxxxx auth.err sshd[13629]: error: Could not get shadow information for NOUSER
xxxxx auth.info sshd[13629]: Failed password for invalid user ftpuser from xxxxxxxxxxxxx
xxxxx auth.info sshd[13631]: Invalid user asterisk from xxxxxxxxxxxx
They are hundreds of these in my log files…
Any way I can counter attack this B* ??? or block his access to my WD, he is changing IP's and it's probably a spanish speaker as I can see in his ID tries.
Can I block like Argentina ?
I tried iptables, but I cannot make it work… somehow it's installed but I cannot find the app, (I know a little linux and that's not that I am lost) it's not there.
Thanks…
P.S: I thing the guys is trying to find a SPAM server for free… be aware ppl.
If I can't solve this I will have to block my DNS or the router port.