Re: brute force ssh attack

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
Subject: Re: brute force ssh attack
From: Matthew Miller <mattdm@xxxxxxxxxx>
Date: Wed, 27 Apr 2005 08:57:03 -0400
In-reply-to: <[email protected]>
List-archive: <https://www.redhat.com/archives/fedora-list>
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
References: <[email protected]>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
User-agent: Mutt/1.4.1i

On Wed, Apr 27, 2005 at 02:49:55PM +0200, Daniel Kirsten wrote:
> >Did you happen to have perl-suidperl installed?
> No

Well, not that one then.

You do have all of the latest patches installed and are running the current
kernel, right? Some investigation of the files the users installed and the
commands they ran if we're lucky (some of these people forget to clear
.bash_history) would be very helpful, 'cause it sounds like we've got an
unpatched exploit....

-- 
Matthew Miller           mattdm@xxxxxxxxxx        <http://www.mattdm.org/>
Boston University Linux      ------>                <http://linux.bu.edu/>
Current office temperature: 80 degrees Fahrenheit.

References:
- Re: brute force ssh attack
  - From: Daniel Kirsten

Prev by Date: Re: my printer keeps printing blank pages
Next by Date: Re: brute force ssh attack
Previous by thread: Re: brute force ssh attack
Next by thread: Re: brute force ssh attack
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]