troubleshooting Question

Logwatch beginning to worry me ?

Avatar of chaseivey
chaseivey asked on
VulnerabilitiesCiscoLinux Security
4 Comments2 Solutions755 ViewsLast Modified:
Hello,
I have linux server running CentOS, Apache, mySQL.
I have an external Cisco firewall, and I currently connect to my server via SSH or Plesk 9.

I have recently reviewed several 'logwatch' emails sent to me from my server.  The content of these emails is beginning to worry me.  There are over a hundred unauthorized attempts at accessing my server with usernames anywhere from 'Bob' to 'madman86'.  I am the ONLY person who even knows about my server, so I'm wondering if these are hacking attempts?  If so, is this normal? Is this something I should worry about? What is the best safeguard against these 'attempts'?
ASKER CERTIFIED SOLUTION
upanwar

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 2 Answers and 4 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 2 Answers and 4 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros