>> 'di 'to lion worm. i dont have DNS on this box.
>>
>
>From what I know the li0n worm doesn't just exploit the BIND 8 TSIG
>vulnerability. It looks for the many common vulnerabilities (such as with
>FTPd's) and exploits those if it can; the TSIG vulnerability was just the
>most notorious (because DNS servers are much more important).
Well just to check if its really the lion worm download the
lionfind utility from RH, it can track down the worm's trail if it really is the worm.
Maybe it just came from some stray program you left running *shrug*
--charles
Get 250 color business cards for FREE!
http://businesscards.lycos.com/vp/fastpath/
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
