sshd vunerability compromise

From: Ron Parker (sysop@scbbs.com)
Date: 12/17/01


From: Ron Parker <sysop@scbbs.com>
Date: Sun, 16 Dec 2001 17:09:35 -0800

Our system was compromised due to sshd vunerability. The cracker
created a directory called bambulua and in it are:

bdb
pipi (running at port 65531)
suckit
vanish2
td

Anyone seen these before (well, anyone other than the guy who cracked
us) and can tell me what they do? Thanks.

-ron

--
Ron Parker
Software Creations            http://www.scbbs.com
TradeWinds Publishing         http://www.intl-trade.com
TradePoint Los Angeles        http://www.tradepointla.org
SiteDirector Security Server  http://livepublish.scbbs.com
Civil War Online Library      http://civilwar.scbbs.com