So I am a new administrator to a game server and I am looking at the logs. I do not know all the information about this game server; it is a Linux Debian server 2.6.8-2-386. This server is on a public network because it is a game server. I notice in my auth.log that there are many (many…many) entries to SSH
May 17 15:58:57 localhost sshd[21015]: Illegal user test from ::ffff:125.7.209.10
May 17 15:59:09 localhost sshd[21023]: Illegal user guest from ::ffff:125.7.209.10
May 17 15:59:12 localhost sshd[21025]: Illegal user master from ::ffff:125.7.209.10
May 17 15:59:52 localhost sshd[21049]: Illegal user test from ::ffff:125.7.209.10
May 17 15:59:54 localhost sshd[21051]: Illegal user test from ::ffff:125.7.209.10
May 17 15:59:57 localhost sshd[21053]: Illegal user webmaster from ::ffff:125.7.209.10
May 17 15:59:59 localhost sshd[21055]: Illegal user username from ::ffff:125.7.209.10
May 17 16:00:01 localhost sshd[21057]: Illegal user user from ::ffff:125.7.209.10

There are hundreds of these and I was wondering it this is a dictionary attempt to the log in with ssh? They are comming from different address too. Any information would be a great help.

-GA