Re: brute force ssh attack

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: fedora-list@xxxxxxxxxx
Subject: Re: brute force ssh attack
From: "Daniel Kirsten" <Daniel.Kirsten@xxxxxxx>
Date: Wed, 27 Apr 2005 14:15:00 +0200 (MEST)
List-archive: <https://www.redhat.com/archives/fedora-list>
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

>meaning that they did gain root access after all but were able to hide this
through a >rootkit???
>
>/Håkan

They tried to login as root, but according to /var/log/secure, they used a 
wrong password.  Lateron, they probably gained root access in order to 
manipulate files which have write access only to root.

Best regards,   Daniel


-- 
+++ GMX - die erste Adresse für Mail, Message, More +++

10 GB Mailbox, 100 FreeSMS  http://www.gmx.net/de/go/topmail

Follow-Ups:
- Re: brute force ssh attack
  - From: David Cary Hart

Prev by Date: Re: rpm and yum problems after fc2 to fc3 update
Next by Date: Re: brute force ssh attack
Previous by thread: Re: brute force ssh attack
Next by thread: Re: brute force ssh attack
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]