Quoting Allen Umlas ([EMAIL PROTECTED]): > I encountered twice been hacked by someone outside my network, What > port usually crakers entered to system? what are thing usually things > that hackers do?
Study your system as if you were an attacker: http://www.linuxworld.com/linuxworld/lw-2000-08/lw-08-expo00-hacking.html > I used ipchains as my firewall but it useless. Well, it's fair to say that, if you're not running vulnerable services, it's superfluous, at least. > How can i check my server and block those ports that are common to > hackers... How about just making sure there are no notoriously buggy/vulnerable daemons listening on those ports? Then, there would be no need to "block" them. lpd, wu_ftpd, bind8, rpc.portmap, rpc.statd.... Turn off all services you aren't absolutely committed to keep patched, and subscribe to your distribution's security-alert mailing list. -- Cheers, "Not using Microsoft products is like being a non-smoker Rick Moen 40 or 50 years ago: You can choose not to smoke, yourself, [EMAIL PROTECTED] but it's hard to avoid second-hand smoke." -- M. Tiemann _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] Fully Searchable Archives With Friendly Web Interface at http://marc.free.net.ph To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
