[Coco] Re: Not sure about the Barden issue
John E. Malmberg
wb8tyw at qsl.net
Tue Jul 27 22:35:29 EDT 2004
Boisy G. Pitre wrote:
>
> At 9:02 AM, someone logged onto my Linux box (24.196.220.38) through an
> account that I have open for NitrOS-9 and related work. The same
> individual stayed logged on for 6 hours, unbeknownst to me. In the mean
> time, I suspect that he (or she?) wreaked the havoc that ensued.
See http://www.dsbl.org for an open source test program to check your
security. I believe that linux versions are available.
If you have an x-11 server set up on your LINUX box, make sure that the
security settings do not allow unknown I.P. addresses to connect to it.
If it does, they can silently slave your keyboard, mouse and screen.
Also look for bugs in web server forms. On another forum it took weeks
to find out that there was a vulnerability that allowed a mail server
written in Perl to be uploaded to a LINUX web server and make a spam
run, after which the Perl mail server was deleted. The spammer would
wait 3 days to a week, and then do it again. They were only caught
because the desperate system administrator put a packet monitor on it.
-John
wb8tyw(at)qsl.net
Personal Opinion Only
More information about the Coco
mailing list