Multiple port scan and SSH brute-force attacks detected. Moving to a cold storage. Will investigate these issues. Use a firewall to close all you open ports and hide your PC behind NAT (a router). Encrypt your wallet with a password no less than 10 symbols long. Use a personal firewall and network monitor to prevent keylogging. Don't install untrusted applications. Beware of phishing attacks. Do virus scans. Ideally place your holdings on a separate Linux computer behind NAT you don't work with.
Attacks coming through the client? I am not noticing anything strange on my end.
reverse mapping checking getaddrinfo for srv2.llactatec.com [192.157.236.128] failed - POSSIBLE BREAK-IN ATTEMPT!
Sep 22 07:30:13 ***** sshd[4480]: Accepted publickey for ***** from 192.157.236.128 port 40654 ssh2
Sep 22 07:30:13 ***** sshd[4480]: pam_unix(sshd:session): session opened for user ***** by (uid=0)
Sep 22 07:30:14 ***** sshd[4337]: Failed password for invalid user melody from 70.39.76.18 port 19595 ssh2
The whole range of ports is scanned. There are chinese IPs.
Jump on ##hyperstake-dev when you have a chance.
Also for me this seems to not be a problem for me, i am using the -debugnet=1 startup switch and not seeing the same activity.
Need to work up the log to find possible vulnerabilities. We should develop a big security manual.
Other guys have noticed this too, but saying it is not crypto related, just chinese scanning everyone for open ssh.
