Drew Weaver wrote: > If they got in via SSH and all they did was deface his website > they must be stand-up guys, huh? Indeed. I try to be reasonably quick about updates and the occasional short-notice ssh exploit is rather scary. --- I've found that at least 75-80% of the time there is a compromise the "hacker" doesn't have "local" access to the system, meaning a shell. They simply upload a script to /tmp, run it, and that's their damage. If they are getting in via SSH someone has a bad security policy. -Drew _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] Server Hacked: Cpanel
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: "CentOS mailing list" <centos@xxxxxxxxxx>
- Subject: RE: [CentOS] Server Hacked: Cpanel
- From: "Drew Weaver" <drew.weaver@xxxxxxxxxx>
- Date: Wed, 9 Aug 2006 12:48:11 -0400
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <44DA0FF1.3050500@xxxxxxxxx>
- Thread-index: Aca701p+1TdlzI9lT3GabCiNchJvpAAABKJA
- Thread-topic: [CentOS] Server Hacked: Cpanel
- References:
- Re: [CentOS] Server Hacked: Cpanel
- From: Chris Mauritz
- Re: [CentOS] Server Hacked: Cpanel
- Prev by Date: Re: [CentOS] Server Hacked: Cpanel
- Next by Date: Re: [CentOS] Server Hacked: Cpanel
- Previous by thread: Re: [CentOS] Server Hacked: Cpanel
- Next by thread: Re: [CentOS] Server Hacked: Cpanel
- Index(es):
 |