Quoting Ged Haywood <[EMAIL PROTECTED]> [Mar 21, 2002 16:15]:
> > Any idea as to how it got on my server.
>
> Nope. There are a thousand ways it could have been done if
> your server is not carefully secured. Do waht Perrin said -
> take it offline, it can't be trusted - and read the CERT stuff
> that you've been pointed to by another useful reply.
Another alternative is to replace it with something that appears
to do the same thing, but actually logs a ton of stuff from the
requestor.
(darren)
--
My one regret in life is that I am not someone else.
-- Woody Allen
