how does brute force happen?
i checked my var/log/secure files and i saw many accepteped logins that were not mine.
i am guessing my server was compromised.
i had a 7 digit password.
if the hacker uses bruteforce then does he just manage to get my server login without knowing the password?
or does he know the password before he logs in?
how does it work?
ive used a 16 digit password now and there havent been any hacks now.
ive checked for root kits and im clean.
i think he must have guessed my old password.
guide me please.
-sohail
