re: Strange command histories in hacked shell server

From: Jerry Bell (jerry_at_syslog.org)
Date: 12/17/04

  • Next message: Richard Kojedzinszky: "re: Strange command histories in hacked shell server" 
    Date: Fri, 17 Dec 2004 10:51:35 -0500 (EST)
To: freebsd-security@freebsd.org

    Did I understand correctly, that anyone can connect to the shell server
    and create an account for themselves?

    I have a somewhat rudimentry hardening guide for FreeBSD at
    http://www.syslog.org/Content-5-4.phtml
    I've tried to keep it up-to-date, but I have yet to incorporate MAC, which
    I think will help out a good bit more.

    I hope you find this a useful.

    Jerry
    http://www.syslog.org

    Ganbold <ganbold <at> micom.mng.net> wrote:
    >Please give me some advice and info regarding this kind of hack.
    >What should I do in order to secure my shell server? I mean except
    >securelevel, unneeded services etc.
    >Can somebody give me some hints on file and directory permissions?
    >Is there anybody who has similar server config and already had such issues
    >and problems?

    _______________________________________________
    freebsd-security@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-security
    To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

  • Next message: Richard Kojedzinszky: "re: Strange command histories in hacked shell server"

    Relevant Pages

    • Re: Securing for shells
      ... I'm not a new person at Linux security and have been using the operating ... steps taken to secure a shell server. ... I'm also considering setting up a shell server on a separate network. ...
      (comp.os.linux.security)
    • Re: some new exploit is out
      ... That has little to no relevance to anyone on this ... i'm not a script kiddie but may be some of my user. ... the company where i work offer shell server in freebsd, and i want to prepare my shelll server for any kind exploit. ...
      (FreeBSD-Security)