[App_rpt-users] What is the "debian" user in the DIAL distro?

[Bryan Fields]

On 5/10/17 3:19 PM, Steve Zingman wrote:
> That is a leftover "mandated" from above. It will be disabled in the RC.

I can confirm debian/debian via ssh on port 222 (!) is now part of a well
known scanner/malware tool and identified as allstarlinux.

This has been brute forcing a number of dial installs on HamWAN.  They install
a script that tests CPU and looks to either install a bitcoin miner or network
scanner.  The RPi's got the network scanner :)

73's
-- 
Bryan Fields

727-409-1194 - Voice
http://bryanfields.net