Matthew T. O'Connor wrote: > Hello, I have a server running CentOS 4.3 with all the latest updates. > The server in question has been hacked by spammers a few times. The > details of the hack have been basically the same every time. I find > some directory created by the apache user account in /tmp. The new > directory contains an html file, and a list of email addresses to spam > and a perl script that spams all those email addresses with the html file. sounds like scripts and bad code on the web-doc-root being exploited. consder enabling SELinux. this is the sort of thing that selinux was meant to prevent, and does a very good job of it. -KB -- Karanbir Singh : http://www.karan.org/ : 2522219@icq _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache Security
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: [CentOS] Apache Security
- From: Karanbir Singh <mail-lists@xxxxxxxxx>
- Date: Thu, 22 Jun 2006 23:02:20 +0100
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <449ACAF5.2010904@xxxxxxxx>
- References: <449ACAF5.2010904@xxxxxxxx>
- User-agent: Thunderbird 1.5.0.2 (X11/20060501)
- Follow-Ups:
- Re: [CentOS] Apache Security
- From: Jim Perrin
- Re: [CentOS] Apache Security
- From: Nick
- Re: [CentOS] Apache Security
- References:
- [CentOS] Apache Security
- From: Matthew T. O'Connor
- [CentOS] Apache Security
- Prev by Date: Re: [CentOS] Building Mail Server, Need Advice
- Next by Date: Re: [CentOS] OT -- BASH
- Previous by thread: Re: [CentOS] Apache Security
- Next by thread: Re: [CentOS] Apache Security
- Index(es):
 |