The UNIX and Linux Forums  

Go Back   The UNIX and Linux Forums > Top Forums > UNIX for Advanced & Expert Users
check pass; user unknown check pass; user unknown
.
google unix.com

Forums Register Forum RulesLinksAlbums FAQ Members List Calendar Search Today's Posts Mark Forums Read


UNIX for Advanced & Expert Users Expert-to-Expert. Learn advanced UNIX, UNIX commands, Linux, Operating Systems, System Administration, Programming, Shell, Shell Scripts, Solaris, Linux, HP-UX, AIX, OS X, BSD.

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
check user id before running script cpolikowsky UNIX for Dummies Questions & Answers 3 06-06-2008 01:02 PM
PING - Unknown host 127.0.0.1, Unknown host localhost - Solaris 10 Przemek SUN Solaris 4 05-26-2008 01:11 AM
How to check if a user belongs to a group (KSH)? rockysfr Shell Programming and Scripting 2 07-03-2007 12:39 PM
How to check the last login user were doing in the system raziayub SUN Solaris 1 04-04-2007 07:44 AM
disallowing user/pass authentication in favor of a pure key system? xyyz UNIX for Advanced & Expert Users 2 03-04-2003 01:37 AM

Closed Thread
English Japanese Spanish French German Portuguese Italian Dutch Swedish Russian Norwegian Hungarian Hebrew Danish Bulgarian Greek Powered by Powered by Google
 
LinkBack Thread Tools Search this Thread Rate Thread Display Modes
  #1 (permalink)  
Old 07-18-2008
mcraul mcraul is offline
Registered User
  
 

Join Date: Mar 2008
Posts: 80
check pass; user unknown
Hi all,

While watching the log at /var/log/messages on a Centos 4.x box I keep seeing this come up

Jul 18 09:38:40 ws096 PAM_pwdb[708]: check pass; user unknown


From what I understand this might be a ssh attack or am I wrong here?
The bad thing is that it does not show an IP address its coming so I could block it. Anybody run into this before and found a solution?

Thanks!
  #2 (permalink)  
Old 07-21-2008
zaxxon's Avatar
zaxxon zaxxon is offline Forum Staff  
Moderator
  
 

Join Date: Sep 2007
Location: Germany
Posts: 2,311
I think it was just a mistake - maybe someone tried to log on using a wrong name or thinking he/she was going connect to another box. A login attack would look like login spam in your logs, I think.
Closed Thread

Bookmarks

« overhead in the archive | Checking for certain characters »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes Rate This Thread
Hybrid Mode Hybrid Mode
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -4. The time now is 05:07 PM.

The UNIX and Linux Forums - Learn UNIX and UNIX Commands RSS Feeds - Contact Us - The UNIX and Linux Forums - Learn UNIX and UNIX Commands - Archive - Top

Powered by: vBulletin, Copyright ©2000 - 2006, Jelsoft Enterprises Limited. Language Translations Powered by .
vBCredits v1.4 Copyright ©2007 - 2008, PixelFX Studios
The UNIX and Linux Forums Content Copyright ©1993-2009. All Rights Reserved.Ad Management by RedTyger

Content Relevant URLs by vBSEO 3.2.0