Hab hier mal einen Auszug aus meiner auth.log, sieht nach einem angriff aus, bzw versucht einer über ssh reinzukommen, was sagt ihr!
Dec 11 04:15:14 ****** sshd[21685]: Failed password for invalid user office from 211.63.6.132 port 43547 ssh2
Dec 11 04:15:14 ****** sshd[22571]: Invalid user office from 211.63.6.132
Dec 11 04:15:14 ****** sshd[22571]: (pam_unix) check pass; user unknown
Dec 11 04:15:14 ****** sshd[22571]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.63.6.132
Dec 11 04:15:14 ****** CRON[22177]: (pam_unix) session closed for user root
Dec 11 04:15:14 ****** sshd[22571]: Failed password for invalid user office from 211.63.6.132 port 43648 ssh2