SSH Login Attempts
Anyone who runs an Internet-facing server knows that on average they will be targetted for attack several hundred times per day. Here is list of 41,331 username and password combinations which have been used against one of my servers in the last six months. In all there have been 155,876 login attempts.
You may wish to check your own credentials against this list or use it as the basis of a password blacklist for your users.
Each line consists of a username/password combo and the number of times that combo was attempted:
root/Password : 254
In this line (which is actually from the list) the username is root, the password is Password, and the combination of root/Password was attempted 254 times.
Without further ado, here's the list: logins.log. (773kB, plain text, MD5: D3D27C6C53E3011ED8B0F203B7A5764B)
These credentials were captured using Kippo, a medium interaction SSH Honeypot, between July 6, 2011 and January 6, 2012. Anyone interested in seeing the Kippo logs should contact me; I'll be happy to e-mail them to you.