If you run a web server, read this

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



This appeared on the CentOS mailing list:

<quote>
Linked below are details about a new outbreak of hijacked linux web
servers that dispense malware.

http://blog.unmaskparasites.com/2009/09/11/dynamic-dns-and-botnet-of-zombie-
web-servers/

I would highly recommend that you use nmap to scan all your Linux
webservers that are connected to the Internet to see if they are
listening on port 8080.

The best I can tell, there are no articles concerning how these guys
installed nginx or what is contained on a machine that has been
compromised.  But the best way to tell is to see if you are listening on
port 8080 (if you are not supposed to be listening there).  8080 is a
common port for java apps to be running on, so listening on 8080 is not
always necessarily bad.

Thanks,
Johnny Hughes
</quote>

Anne
-- 
New to KDE4? - get help from http://userbase.kde.org
Just found a cool new feature?  Add it to UserBase

Attachment: signature.asc
Description: This is a digitally signed message part.

-- 
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines

[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux