Cibersecurity

Recently, I was checking on my Ubuntu server, which I use for my small digital projects, and as always, I noticed several intrusion attempts from bots or so-called “zombie” servers — those controlled by hackers trying to access private systems.

Log Daily Revision.

IP Country Origin

I’ve realized that I need to be more alert when reviewing the logs in the morning and at night, since that’s when most hacking attempts tend to happen.

In any case, I’ve implemented the necessary security measures, and now the server can pretty much defend itself thanks to both reactive and proactive protection tools that apply special firewall rules to block intrusion attempts.

This is a profession I could never give up, because in a way, by reading the intrusion error logs, I can almost see the attackers’ intentions — even kind of read their minds — to understand how and why they do what they do. It’s actually fun in a strange way. You start to learn how to think like a hacker, and sometimes, even anticipate their moves.

That said, I would never underestimate them — hackers can always be one step ahead. So I approach every case with respect and seriousness whenever I review the system’s daily logs.

Regards,
SysAdmin