On Tue, Feb 26, 2019 at 4:02 PM Zorro via arch-general firstname.lastname@example.org wrote:
I see this happen on my SSH server.
The journal is full of these failed login attempts. Haven't checked from where those login atttempts come from though.
It makes it hard to find something in the journal.
It's why I keep my SSH servers on a non-standard port. I know it doesn't prevent someone from discovering it, but it cuts out 99.99% of all those attacks, being able to filter out connection attempts to port 22