Thomas Cameron wrote:
Hello everyone,
Panic...
I noticed accepted passwords for different users, such as root, myself and another one, coming from outside:::ffff:213.219.168.50
How is that possible? Can I detect somehow what he/she did?
In the mean time I changed passwords.
You're 0wn3ed. That is no longer your machine. You need to blow it away and reload the OS.
This time, use strong passwords. And disable root loging via SSH.
Is it possible to get root logins dissabled in Fedora by default by now?
Thomas
Is ssh even enabled by default? It shouldn't be unless specifically set up properly by the user.
Use authorization keys instead of passwords for ssh wherever possible.
Regards, Ed.
begin:vcard fn:Edward Dekkers n:Dekkers;Edward org:Triple D Computer Services Pty. Ltd.;Management adr:;;822 Rowley Road;Oakford;WA;6121;Australia email;internet:edward@xxxxxxxxxxxxxxxxxxxx title:Mr. tel;work:(08) 9397-1040 tel;fax:(08) 9397-0749 tel;home:(08) 9397-0547 tel;cell:0407083195 x-mozilla-html:FALSE url:http://www.iinet.net.au version:2.1 end:vcard
