Reduction in Internet attacks

[peterb]

I run a small Linux based web server, so Port 80 is open to the internet. I also open port 22 for remote admin. Before Christmas it wasn't unusual to get several hundred break in attempts a night, on a couple of occasions it went up to over 50,000 in a 24 hour period - mostly appearing to originate from IP addresses located in former Soviet block countries. There were also many probes of the web pages.

However, since late December and particularly the New Year, these attaciks have diminished in frequency. Has anyone else noticed this? Has there been a general clamp down on users abusing the internet from these countries?

[Jay]

I have noticed this as well. I get about 5 a week on my FTP server and have had none at all on my webserver.

In the past I would see hours and hours of attacks all day and night from asia.

I wonder why?

[burble]

I had noticed a massive decrease but looking in the logs from yesterday I see thousands of attempted SSH logins. The origin has changed though, I used to see loads of attempts from China but the last lot have all come from the US.

I really should sort the firewall out to block repeated attempts.