[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Server hacked were to find the Server logs
- Subject: Re: [cobalt-security] Server hacked were to find the Server logs
- From: "Martyn Bailey" <martyn@xxxxxxxxxxx>
- Date: Tue, 27 Feb 2001 16:05:36 -0000
- Organization: Solis - Sheffield Internet
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
On 27 Feb 01, at 13:03, John Sim wrote:
> You would be well advised to have a security specialist look over the
> machine for you, to be sure that you are not trojaned in any way. It
> is most common that, unless this cracker was after one website, the
> intruder will have made a way to get back into the box easily. If the
> cracker is remotely skilled at all then lots of trojaned binaries
> could have replaced yours, and it will be hard to tell that there is
> anything up with the machine.
Yep. My experience has been that the only real option is to flatten
the box and reinstall :-(
> Allways prudent to be paranoid in cases like this.
If you're not paranoid, you're not paying enough attention.