If you are in a campus computing environment or otherwise on the public Internet, you are probably having someone look through the windows and jiggle the doorknobs every few hours. These brute force attacks sometimes allow someone access to a system with a common password, in addition to causing your workstation to be spinning up dozens of sshd processes.