Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
S
S
SurPaul2020-02-06 11:42:58
network hardware
SurPaul, 2020-02-06 11:42:58

Who is trying to log in to DD-WRT?

Yesterday I noticed very suspicious activity on a router with DD-WRT v3.0-r42015 std (01/18/20). This appears in the log every 15-20 minutes:

Feb 5 23:36:22 TP-Link TL-WR841ND daemon.info httpd[3096]: httpd : Authentication fail
Feb 5 23:36:22 TP-Link TL-WR841ND daemon.err httpd[3096]: httpd : Request Error Code 401: Authorization required. please note that the default username is "root" in all newer releases


IP is dynamic, DDNS has already been turned off, there are no unknown devices in LAN. How to find out the IP or MAC of the device from which an authorization attempt is being made?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
K
Karpion, 2020-02-06
@Karpion

It would be nice to look at the logs that httpd itself writes.

Similar questions
A
Andras_Shepotko2021-12-01 19:29:28
The laptop does not see Wi-Fi networks. What is the problem? 1Reply
P
pixal2016-04-28 16:07:35
Is it possible to make a Wi-Fi bridge from an apartment to a private house a couple of kilometers from the apartment? 4Reply
N
nurdauletmaks2021-12-04 19:34:20
How to distribute the Internet through a lan cable without a laptop? 3Reply
E
Ememcraft2021-12-05 17:04:25
Your organization has been assigned a network address of 213.83.0.0. How can I subnet this network? 0Reply
A
Alexey2021-12-05 17:04:36
What openWRT router did you use out of the box with wifi6? 0Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question