Skip to content

Calc last failed login user with source ip on Linux

sudo lastb |grep ssh \
  |awk '{ count[$3]++} END{ for(ip in count) print ip, ": " count[ip]}' \
  |sort -nrk 3

Disclaimer
  1. License under CC BY-NC 4.0
  2. Copyright issue feedback me#imzye.me, replace # with @
  3. Not all the commands and scripts are tested in production environment, use at your own risk
  4. No privacy information is collected here
Try iOS App