"MegaNet Domainreg." wrote:
>
> I just got 2 redhat 6.2 machines broken into. Anyone seen this root kit and
> know what the exploit was.
> Creates user/group tcp and runs an irc robot (psybnc) among other things.
> Thanks Paul.
Don't know about the exploit but you should definitely upgrade the
kernel, 2.2.19 is the latest for 2.2.x....
<snip>
> Apr 29 07:44:17 noctech2 kernel: Inspecting /boot/System.map-2.2.14-5.0
> Apr 29 07:44:17 noctech2 syslog: klogd startup succeeded
> Apr 29 07:44:18 noctech2 kernel: Loaded 7337 symbols from
> /boot/System.map-2.2.14-5.0.
> Apr 29 07:44:18 noctech2 kernel: Symbols match kernel version 2.2.14.
Lots of fixes since that version........
http://www.linux.org.uk/
--
Patrick Benson
Stockholm, Sweden
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
