Roger Oberholtzer wrote: >Following up my earlier question about odd (and failed) attempts to log >in as various users via ssh, I now see that the attacking systems have >added 'root' to the users they are trying. Anyone else notice this? > > > What log are these showing up it? (so I can check) -- Ken