I hope you server savvy techs out there can confirm this..
The home server here, duvallocals.info, a server served out of a closet in my guest bedroom get hits from all over the world because of the webcams. Today I noticed on my commercial VPS server where my other sites are hosted has this fail2ban-server running when I view "top."
I decided to install this on my Ubuntu box and 10 minutes later I get this wonderful email..
My server is automatically banning these IP's?
Now I have IP address I can add across the board.
[Fail2Ban] ssh: banned 61.186.90.103
|
Spam
|
x |
|
3:27 PM (12 minutes ago)
 |
|
||
|
||||
Why is this message in Spam? It's similar to messages that were detected by our spam filters. Learn more
Hi,
The IP 61.186.90.103 has just been banned by Fail2Ban after
6 attempts against ssh.
Here are more information about 61.186.90.103:
% [whois.apnic.net node-3]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 61.186.80.0 - 61.186.94.255
netname: CHINANET-HN-CS
country: CN
descr: CHINANET-HN Changsha node network
descr: hunan Telecom
admin-c: CHC17-AP
tech-c: CH636-AP
status: ALLOCATED NON-PORTABLE
changed: ipaddress@hntelecom.net.cn 20050914
mnt-by: MAINT-CHINANET-HN
mnt-lower: MAINT-CHINANET-HN-CS
source: APNIC
role: CHINANET HuNan Changsha
address: No.77 Shaoshang load,Changsha Hunan 410007
country: CN
phone: +86 731 5554275
fax-no: +86 731 5554270
e-mail: abuse.hy@2118.com.cn
remarks: send spam reports to spam.hy@2118.com.cn
remarks: and abuse reports to abuse.hy@2118.com.cn
remarks: Please include detailed information and
remarks: times in UTC
admin-c: CS502-AP
tech-c: CS502-AP
nic-hdl: CHC17-AP
notify: ipaddress@hntelecom.net.cn
mnt-by: MAINT-CHINANET-HN-CS
changed: ipaddress@hntelecom.net.cn 20050818
source: APNIC
changed: hm-changed@apnic.net 20111114
role: CHINANET HUNAN
address: No.1 TuanJie road,ChangSha,Hunan 410005
country: CN
phone: +86 731 4792092
fax-no: +86 731 4792007
e-mail: abuse.szx@2118.com.cn
remarks: send spam reports to spam.szx@2118.com.cn
remarks: and abuse reports to abuse.szx@2118.com.cn
remarks: Please include detailed information and
remarks: times in UTC
admin-c: CH632-AP
tech-c: CS499-AP
nic-hdl: CH636-AP
mnt-by: MAINT-CHINANET-HN
changed: ipaddress@hntelecom.net.cn 20050816
source: APNIC
changed: hm-changed@apnic.net 20111114
Regards,
Fail2Ban
The IP 61.186.90.103 has just been banned by Fail2Ban after
6 attempts against ssh.
Here are more information about 61.186.90.103:
% [whois.apnic.net node-3]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 61.186.80.0 - 61.186.94.255
netname: CHINANET-HN-CS
country: CN
descr: CHINANET-HN Changsha node network
descr: hunan Telecom
admin-c: CHC17-AP
tech-c: CH636-AP
status: ALLOCATED NON-PORTABLE
changed: ipaddress@hntelecom.net.cn 20050914
mnt-by: MAINT-CHINANET-HN
mnt-lower: MAINT-CHINANET-HN-CS
source: APNIC
role: CHINANET HuNan Changsha
address: No.77 Shaoshang load,Changsha Hunan 410007
country: CN
phone: +86 731 5554275
fax-no: +86 731 5554270
e-mail: abuse.hy@2118.com.cn
remarks: send spam reports to spam.hy@2118.com.cn
remarks: and abuse reports to abuse.hy@2118.com.cn
remarks: Please include detailed information and
remarks: times in UTC
admin-c: CS502-AP
tech-c: CS502-AP
nic-hdl: CHC17-AP
notify: ipaddress@hntelecom.net.cn
mnt-by: MAINT-CHINANET-HN-CS
changed: ipaddress@hntelecom.net.cn 20050818
source: APNIC
changed: hm-changed@apnic.net 20111114
role: CHINANET HUNAN
address: No.1 TuanJie road,ChangSha,Hunan 410005
country: CN
phone: +86 731 4792092
fax-no: +86 731 4792007
e-mail: abuse.szx@2118.com.cn
remarks: send spam reports to spam.szx@2118.com.cn
remarks: and abuse reports to abuse.szx@2118.com.cn
remarks: Please include detailed information and
remarks: times in UTC
admin-c: CH632-AP
tech-c: CS499-AP
nic-hdl: CH636-AP
mnt-by: MAINT-CHINANET-HN
changed: ipaddress@hntelecom.net.cn 20050816
source: APNIC
changed: hm-changed@apnic.net 20111114
Regards,
Fail2Ban
