If you know which user they logged in as, they can look up the ~/.bash_history file for that user for some hints. Other than that...install tripwire and you'll be sure when someone changes your binaries. You can also disable telnetd in /etc/inetd.conf so noone can telnet to you, and use ssh instead. HTH, Andrei
------------------------------------------------------------------------- Andrei S. Ivanov [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] http://arhses.dyndns.org -| http://scorpio.dynodns.net -| http://scorpio.myip.org -| <--All the pages bundled together. UIN 12402354 For GPG key, go to above URL/GnuPG -------------------------------------------------------------------------
