-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
http://security.linux.com/security/05/03/23/2239205.shtml
Last week I was faced with the situation every user and administrator dreads--my Web server was hacked. Here's hoping you can use my experience as a guide to investigating your own compromised server, if and when the time comes.
"The nightmare started when I returned to my office to discover 17 missed calls on my cell phone. A moment later, the phone rang again. A frantic customer complained of 'eyes' on his Web site. I visit the site, and, lo and behold, discovered it proclaiming being 'owned' by a hacking group. Upon further investigation, I discovered all the other Web sites on the Debian-based server had been defaced....
**************** *****************************
Kiggundu Mukasa # Computer Network Consultancy###
KYM-NET LTD. # Intranets & Internet Solutions#
Plot 80 Kanjokya Street
P.O. Box 24284 Kampala, Uganda
Tel: +256 77 972255
+256 71 221141
Fax: +256 31 262122
*****************************************************************
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (Darwin)iD8DBQFCS/Dc6oXqh9gLHWwRAlSBAJoDmjSjGixR10HZxYb6wL3g3+WQfQCfTS3L BTXgTe//gd+f5VhUUmUoCc8= =7MUX -----END PGP SIGNATURE-----
_______________________________________________ LUG mailing list [email protected] http://kym.net/mailman/listinfo/lug %LUG is generously hosted by INFOCOM http://www.infocom.co.ug/
