On Sun, 22 Jun 2008, Paul Kelly :: Blacknight wrote:
Have any of you recently noticed a lot of ssh scanning coming from
amazons EC "cloud" IP blocks?
Today alone I've seen approx 4m attempts from EC2 IPs on just 20 nodes
on our network.
That's not too surprising, since any unix-like system that gets
compromised can make a handy platform for extending the hacker's
collection.
Has anyone any experience with Amazons abuse people?
Yeah, if you can call them that. There is no abuse coming from Amazon's
EC2 cluster. I got the impression the only thing Amazon considers abuse
is use of their servers and not paying the bill. If you're a paying
customer, you can do whatever you like.
----------------------------------------------------------------------
Jon Lewis | I route
Senior Network Engineer | therefore you are
Atlantic Net |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________
