RE: help i've been hacked. :(
From: Eris Caffee (eris-redhat-list_at_eldalin.com)
Date: 08/21/05
- Previous message: Eris Caffee: "Re: Przekazana: Odp: RE: help i've been hacked. :("
- In reply to: Chris W. Parker: "RE: help i've been hacked. :("
- Next in thread: kmail: "ASP on Linux"
- Reply: kmail: "ASP on Linux"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Sun, 21 Aug 2005 15:20:31 -0000 (UTC) To: "General Red Hat Linux discussion list" <redhat-list@redhat.com>
> Okay, so I looked into the /tmp directory and found ./shell.pl and ./.x.
[snip - lots of investigation goodness]
> I also plan to segment the network so that even if the webserver is
> compromised the perp cannot sniff the rest of the network traffic and
> steal passwords/data. At least, that's how I think it would work.
It sounds like you have an excellent handle on things now.
One other thing I would suggest would be that if you install cacti on the
new server you should edit your httpd.conf and restrict access to it and
it's subdirectories to add another layer of protection. Really, anything
that isn't for the general public ought to be restricted, of course.
Eris Caffee
-- redhat-list mailing list unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
- Previous message: Eris Caffee: "Re: Przekazana: Odp: RE: help i've been hacked. :("
- In reply to: Chris W. Parker: "RE: help i've been hacked. :("
- Next in thread: kmail: "ASP on Linux"
- Reply: kmail: "ASP on Linux"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
