Hi friends
In my log I have hundreds of these entries:
2018-04-15T13:12:01+02:00 info sshd[14344]: Failed password for root from 182.100.67.120 port 40522 ssh2
2018-04-15T15:12:05+02:00 info sshd[14372]: Last message 'Failed password for ’ repeated 5 times, suppressed by syslog-ng on turris
2018-04-15T13:12:05+02:00 err sshd[14344]: error: maximum authentication attempts exceeded for root from 182.100.67.120 port 40522 ssh2 [preauth]
2018-04-15T13:12:05+02:00 info sshd[14344]: Disconnecting authenticating user root 182.100.67.120 port 40522: Too many authentication failures [preauth]
The IP belongs to a chinese owner.I am not an expert, therefore my question: Does somebody try to hack my router. What should I do?
Thanks and best regards
Heinz