Linux-Bulgaria.ORG
навигация

 

начало

пощенски списък

архив на групата

семинари ...

документи

как да ...

 

 

Предишно писмо Следващо писмо Предишно по тема Следващо по тема По Дата По тема (thread)

Re: lug-bg: Hacked ???

  • Subject: Re: lug-bg: Hacked ???
  • From: emo@xxxxxxxxxx (Emil Tantilov)
  • Date: Sun, 3 Feb 2002 10:20:54 -0800


Hi-te,

 Za sajalenie naposledak se otkriha dosta vulnerabilities - za obobshten list 
pogledni:

http://lwn.net/2002/0131/security.php3

 W obshti linii ako smiatash che systemata e hack-nata potarsi za rootkit-owe 
i t.n. Razreshi dostap do SSH (dosta exploits w ssh naposledak :(  samo ot 
IP-ta ot koito ti se wrazwash i t.n.  

 Dobra ideia e da pusnesh script koito da srawniawa prez wreme za promeneni 
file-owe (/bin /etc ...) i da prashta mail ako nameri takiwa - az si napisah 
edin mnogo elementaren sas md5, znam che ima i programka na perl (zabrawih i 
imeto - freshmeat) deto prawi check za promeneni file-owe i atributi na 
file-owe ...
Waobshte wsichko koeto shte ti pomogne da saberesh info ako stane problem.

Kato osnowna ideia e da zabranish dostapa na wsichki oswen tezi koito triabwa 
da imat dostap (tcpwrappers, iptables ...)

Emo

On Saturday 02 February 2002 07:14 pm, you wrote:
> Hi All,
>
> I stumbled into a problem on a server I'm running. It appears that the
> $HOSTNAME enviroment on the system has changed to an
> ip:193.137.206.26 . namerih tozi ip i v secure loga sshd did not resive
> authentication string from ip 193.137.206.26. koeto za men znachi che ili
> se e opital da se logne ili me e port scaniral
>
> uspiah da prosledia tova ip do subneta na niakakav universitet v
> pourtugalia ?? (.pt) mat.uc.pt
>
> znachi mashinata e RedHat 7.2 , imam pusnati ssh, apache (http,https),
> pop3,imap (chrez courier imap), i smtp (qmail/tcpserver), mysql
> vsichki patchove ot red hat sa instalirani i gi podnoviavam redovno kogato
> se poiaviat.
>
> Pri nalichnata po gore informatsia zapochvat da mi zvaniat kambanki v
> glavata no machinata e kritichna, i parvo che niamam fizicheski dostap do
> neia, vtoro ne moga da spara nishto ot gore prebroenite servises. Niakoi
> moje li da mi pomogne s ideia savet.
>
> Yavor
>
>
> ===========================================================================
> A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
> http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora
===========================================================================
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora
  • Относно:

 
наши приятели

 

линукс за българи
http://linux-bg.org

FSA-BG
http://fsa-bg.org

OpenFest
http://openfest.org

FreeBSD BG
http://bg-freebsd.org

KDE-BG
http://kde.fsa-bg.org/

Gnome-BG
http://gnome.cult.bg/

проект OpenFMI
http://openfmi.net

NetField Forum
http://netField.ludost.net/forum/

 

 

Linux-Bulgaria.ORG

Mailing list messages are © Copyright their authors.