On Tue, 2008-08-26 at 23:10 +0100, Adam Hardy wrote:
All the hacker needs to do, before rooting the system, is to run my cronjobs
and
save the output, and then change the cronjobs to email me these 'all clear'
reports instead. The reports don't even have dates or times that require
Osamu Aoki on 25/08/08 16:41, wrote:
Hi,
On Thu, Aug 14, 2008 at 10:51:56PM +0100, Adam Hardy wrote:
Adam Hardy on 13/08/08 10:27, wrote:
Martin on 12/08/08 16:34, wrote:
On Tue, Aug 12, 2008 at 5:12 PM, Adam Hardy [EMAIL PROTECTED]
wrote:
The question is, what do I replace chkrootkit with,
Adam Hardy escreveu:
After the attack, I quickly realized that I have no definitive way of
deciding if my system was rooted or not, and so I installed rkhunter.
This provides a simple hash-based mechanism to create an image of the
clean system (although I can't actually do that with the Etch
Eduardo M KALINOWSKI on 26/08/08 13:45, wrote:
Adam Hardy escreveu:
After-the-attack identification of a rootkit attack, it seems, can
always be compromised if there is no safe read-only hash or encryption
of the known-good system binaries.
Unfortunately, I think that if you do not have
2008/8/26 Adam Hardy [EMAIL PROTECTED]:
The more I think about it, the more I believe some sharp hacker out there
could easily have fooled me for months.
Any suggestions now?
1) Be slightly less paranoid :)
2) Assuming your server is hosted with VPSVille, Slicehost or some
other hosting
Sam Kuper wrote:
2) Assuming your server is hosted with VPSVille, Slicehost or some
other hosting company that doesn't give you physical access but does
have a facility for reinstalling your OS on demand, you could, in the
following order:
- Back up your data from it locally;
- Prepare a
2008/8/27 Eduardo M KALINOWSKI [EMAIL PROTECTED]:
What I could recommend is to run only the necessary services, and if
possible restrict the IPs allowed to connect to them, keep the system
updated with security fixes, make frequent backups, and other obvious
things that we all already know of.
7 matches
Mail list logo