Re: lighting---hacked!
From: David (thunderbolt01@netscape.net)Date: 05/08/02
- Next message: John Thompson: "Re: RealPlayer and iptables"
- Previous message: The Broken One: "My Linux Box Hacked :("
- In reply to: Clayton D. Strand: "lighting---hacked!"
- Next in thread: drumstik: "Re: lighting---hacked!"
- Reply: drumstik: "Re: lighting---hacked!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: David <thunderbolt01@netscape.net> Date: Wed, 08 May 2002 16:14:54 GMT
Clayton D. Strand wrote:
> Our server (www.lazotech.com) got hacked. Someone put a program on
> it to change the root password then installed a program called
> BOGUS.root.h2aC which evidently replaced our named. I can't get into
> the system, the command "passwd" from a rescue disk does not work,
> as the actual password files were deleted from the system.
If you can't get into it to make a backup then you can use a root disk
like Tom's root boot disk which is available at the link below to get
the system up to make a backup.
Or, most distro's include a rescue image on the installation CD to get
the system up to make repairs and/or backups. Boot like doing a new
install and at the boot prompt enter:
linux rescue
> Is there a convenient fix, or am I hosed, if I understand the
> technical term correctly?
There is no convenient fix to repair a CRACKED system other than wiping
the disk and doing a clean install. This is the only way to be sure no
backdoors and/or changes made to the system were missed.
-- Confucius: He who play in root, eventually kill tree. Registered with the Linux Counter. http://counter.li.org
- Next message: John Thompson: "Re: RealPlayer and iptables"
- Previous message: The Broken One: "My Linux Box Hacked :("
- In reply to: Clayton D. Strand: "lighting---hacked!"
- Next in thread: drumstik: "Re: lighting---hacked!"
- Reply: drumstik: "Re: lighting---hacked!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
