In sshd log, we often see lots of messages like

reverse mapping checking getaddrinfo for ... POSSIBLE BREAKIN ATTEMPT!

That means someone is trying to brute force ssh break in. This thread has some good suggestion on how to combat the attack: http://www.debian-administration.org/articles/187.