[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Server hacked were to find the Server logs

Subject: Re: [cobalt-security] Server hacked were to find the Server logs
From: "Martyn Bailey" <martyn@xxxxxxxxxxx>
Date: Tue, 27 Feb 2001 16:05:36 -0000
Organization: Solis - Sheffield Internet
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On 27 Feb 01, at 13:03, John Sim wrote:

> You would be well advised to have a security specialist look over the
> machine for you, to be sure that you are not trojaned in any way.  It
> is most common that, unless this cracker was after one website, the
> intruder will have made a way to get back into the box easily.  If the
> cracker is remotely skilled at all then lots of trojaned binaries
> could have replaced yours, and it will be hard to tell that there is
> anything up with the machine.

Yep.  My experience has been that the only real option is to flatten 
the box and reinstall :-(
 
> Allways prudent to be paranoid in cases like this.

If you're not paranoid, you're not paying enough attention.

References:
- [cobalt-security] Server hacked were to find the Server logs
  - From: Robbert Hamburg
- Re: [cobalt-security] Server hacked were to find the Server logs
  - From: John Sim

Prev by Date: [cobalt-security] cgi-bin security
Next by Date: Re: [cobalt-security] Server hacked were to find the Server logs
Previous by thread: Re: [cobalt-security] Server hacked were to find the Server logs
Next by thread: Re: [cobalt-security] Server hacked were to find the Server logs

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index