Hi.
I have BE88U with firmware Merlin 3006.102.3.
A week ago I started noticing the following events in its log - ... dropbear[...]: Login attempt for nonexistent user from [External IP]
The standard ADMIN password and name have long been changed to complex ones.
The standard port 22 has been changed. SSH access is open only from LAN.
I tried to connect via SSH from external IPs, but I could not get such an event in the log and connect either.
How is this possible and where to look for a hole in my security?
I searched for similar cases on the forum, but the most useful advice is a complete reset of the router.
I don't like it and I want to first find a hole in the existing security and first close it.
I have BE88U with firmware Merlin 3006.102.3.
A week ago I started noticing the following events in its log - ... dropbear[...]: Login attempt for nonexistent user from [External IP]
The standard ADMIN password and name have long been changed to complex ones.
The standard port 22 has been changed. SSH access is open only from LAN.
I tried to connect via SSH from external IPs, but I could not get such an event in the log and connect either.
How is this possible and where to look for a hole in my security?
I searched for similar cases on the forum, but the most useful advice is a complete reset of the router.
I don't like it and I want to first find a hole in the existing security and first close it.