Found, a new rootkit
Gene Heskett
gene.heskett at verizon.net
Fri Mar 31 23:30:18 UTC 2006
On Friday 31 March 2006 15:19, Craig White wrote:
>On Fri, 2006-03-31 at 13:39 -0600, Les Mikesell wrote:
>> On Fri, 2006-03-31 at 13:20, Gene Heskett wrote:
>> > >They use these botnets to distribute spam, launch DDOS, or
>> > > whatever else their imagination came come up with. Either of
>> > > those would contribute to an increase in bandwidth usage.
>> >
>> > Humm, we were in fact subjected to a DDOS attack early last sunday
>> > morning, which lead to the traffic servers demise & rebuild.
>> > Got us listed at spamcop & our mail died.
>>
>> Or more likely, your box was participating in a DDOS. Do
>> you have any idea what exploit might have been used to
>> install the programs you found?
>
>----
>My money is on sshd - somebody with a weak password.
>
We found a couple that were downright
stupid/dumb/assinine/all_of_the_above.
Fixed, with a cluex4 upside the head to the parties involved.
>Craig
--
Cheers, Gene
People having trouble with vz bouncing email to me should add the word
'online' between the 'verizon', and the dot which bypasses vz's
stupid bounce rules. I do use spamassassin too. :-)
Yahoo.com and AOL/TW attorneys please note, additions to the above
message by Gene Heskett are:
Copyright 2006 by Maurice Eugene Heskett, all rights reserved.
More information about the fedora-list
mailing list