Mis a jour: mai 2026
Top 100 des noms d'utilisateur SSH attaques
Les noms d'utilisateur les plus utilises dans les attaques par force brute SSH. Evitez les noms d'utilisateur previsibles.
| # | Username | Tentatives | IPs |
|---|---|---|---|
| 1 | root | 1,282 | 108 |
| 2 | ubuntu | 735 | 74 |
| 3 | solana | 654 | 15 |
| 4 | sol | 536 | 14 |
| 5 | admin | 377 | 63 |
| 6 | user | 279 | 42 |
| 7 | sa | 279 | 5 |
| 8 | solv | 198 | 8 |
| 9 | test | 129 | 46 |
| 10 | postgres | 128 | 33 |
| 11 | john | 95 | 7 |
| 12 | validator | 69 | 6 |
| 13 | lighthouse | 66 | 5 |
| 14 | deploy | 63 | 24 |
| 15 | oracle | 63 | 23 |
| 16 | ethereum | 61 | 4 |
| 17 | git | 54 | 23 |
| 18 | 345gs5662d34 | 53 | 38 |
| 19 | user1 | 48 | 20 |
| 20 | node | 47 | 10 |
| 21 | odoo16 | 42 | 8 |
| 22 | ftpuser | 39 | 20 |
| 23 | hadoop | 39 | 19 |
| 24 | mysql | 37 | 20 |
| 25 | guest | 37 | 21 |
| 26 | steam | 36 | 11 |
| 27 | firedancer | 34 | 5 |
| 28 | minecraft | 33 | 15 |
| 29 | postmaster | 32 | 1 |
| 30 | testuser | 32 | 20 |
| 31 | es | 30 | 11 |
| 32 | raydium | 30 | 4 |
| 33 | dev | 29 | 15 |
| 34 | mapr | 26 | 2 |
| 35 | debian | 26 | 14 |
| 36 | latitude | 26 | 2 |
| 37 | solnode | 26 | 1 |
| 38 | slv | 24 | 1 |
| 39 | developer | 24 | 14 |
| 40 | bot | 23 | 7 |
| 41 | test2 | 22 | 17 |
| 42 | trader | 22 | 6 |
| 43 | tomcat | 21 | 7 |
| 44 | trading | 20 | 2 |
| 45 | app | 20 | 5 |
| 46 | esuser | 19 | 6 |
| 47 | tom | 19 | 8 |
| 48 | ftp | 19 | 7 |
| 49 | minima | 18 | 3 |
| 50 | elasticsearch | 18 | 7 |
| 51 | system | 18 | 7 |
| 52 | jibs | 18 | 3 |
| 53 | 3d | 18 | 3 |
| 54 | server | 17 | 14 |
| 55 | frappe | 17 | 5 |
| 56 | sonar | 16 | 5 |
| 57 | www | 16 | 5 |
| 58 | nginx | 16 | 5 |
| 59 | wang | 16 | 5 |
| 60 | operator | 15 | 4 |
| 61 | solr | 15 | 4 |
| 62 | centos | 15 | 8 |
| 63 | deployer | 15 | 12 |
| 64 | oscar | 14 | 5 |
| 65 | student | 14 | 6 |
| 66 | elastic | 14 | 5 |
| 67 | ec2-user | 14 | 10 |
| 68 | uftp | 14 | 5 |
| 69 | test1 | 14 | 11 |
| 70 | dolphinscheduler | 14 | 5 |
| 71 | gitlab | 14 | 7 |
| 72 | administrator | 14 | 8 |
| 73 | helius | 13 | 1 |
| 74 | ubnt | 13 | 9 |
| 75 | jupyter | 13 | 2 |
| 76 | grafana | 13 | 2 |
| 77 | soldev | 13 | 1 |
| 78 | flask | 12 | 5 |
| 79 | pi | 12 | 5 |
| 80 | jenkins | 12 | 7 |
| 81 | zabbix | 12 | 5 |
| 82 | cexuser | 12 | 1 |
| 83 | cexadmin | 12 | 1 |
| 84 | operation | 12 | 2 |
| 85 | opadmin | 12 | 2 |
| 86 | psadmin | 12 | 2 |
| 87 | ops | 12 | 2 |
| 88 | solscript | 12 | 1 |
| 89 | banx | 12 | 1 |
| 90 | dmdba | 12 | 4 |
| 91 | soltech | 12 | 1 |
| 92 | ps | 12 | 2 |
| 93 | user2 | 11 | 6 |
| 94 | myuser | 11 | 7 |
| 95 | support | 11 | 7 |
| 96 | odoo | 11 | 11 |
| 97 | tester | 11 | 11 |
| 98 | devops | 11 | 7 |
| 99 | noa | 10 | 1 |
| 100 | shira | 10 | 1 |
RECOMMANDATIONS
- •Desactivez la connexion root via SSH
- •Utilisez des noms d'utilisateur uniques et imprevisibles
- •Implementez l'authentification par cle publique
- •Configurez fail2ban pour bloquer les IPs