>-----Original Message----- >From: [EMAIL PROTECTED] >[mailto:[EMAIL PROTECTED] Behalf Of Steven >Critchfield >Sent: Thursday, February 10, 2005 11:47 AM >To: Asterisk Users Mailing List - Non-Commercial Discussion >Subject: RE: [Asterisk-Users] [EMAIL PROTECTED] scary log > > >On Thu, 2005-02-10 at 10:56 -0500, Karl H. Putz wrote: >> I had the system setup to allow http and ssh. >> >> The hack came in through ssh. > >I doubt you where hacked via ssh. Most likely you had your password >brute force cracked.
That is what I meant to report to the list. SSH was simply the transport mechanism. Karl > >> >-----Original Message----- >> >[mailto:[EMAIL PROTECTED] Behalf Of Christian >> >Moller >> >Sent: Thursday, February 10, 2005 10:39 AM >> >Subject: Re: [Asterisk-Users] [EMAIL PROTECTED] scary log >> >your system? Through telnet or what? > >What moron still uses telnet these days? > >> >----- Original Message ----- >> >From: "Karl H. Putz" <[EMAIL PROTECTED]> >> >Subject: RE: [Asterisk-Users] [EMAIL PROTECTED] scary log >> > >> > >> >> You've likely been hacked. >> >> >> >> I have recently had a similar incident where a hacker guessed my root >> >> password (MY BAD) and set up an ebay password skimming site. > >This is a good example of why ease of use is not always a good thing. >Had you actually had to learn more before you had an install, you would >have been through a text or two that mention password strengths. > >And not to disparage the creator/maintainer of [EMAIL PROTECTED], but you >really need to trust that your install was a little hardened before >placing it on the network. >-- >Steven Critchfield <[EMAIL PROTECTED]> > >_______________________________________________ >Asterisk-Users mailing list >[email protected] >http://lists.digium.com/mailman/listinfo/asterisk-users >To UNSUBSCRIBE or update options visit: > http://lists.digium.com/mailman/listinfo/asterisk-users > _______________________________________________ Asterisk-Users mailing list [email protected] http://lists.digium.com/mailman/listinfo/asterisk-users To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
