Re: Tracking Down Security Hole
From: James Riden (j.riden_at_massey.ac.nz)
Date: 02/17/04
- Next message: Bill Unruh: "Re: Windows 2000 Source Code File"
- Previous message: Mark Olbert: "Tracking Down Security Hole"
- In reply to: Mark Olbert: "Tracking Down Security Hole"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 17 Feb 2004 15:23:19 +1300
Mark Olbert <mark@arcabama.com> writes:
> I'm virtually certain that my linux (2.4.17) firewall/router has been
> hacked (e.g., there's an entire directory of "replacement" executable
> files, such as ls, that wasn't there before, and all the replacments
> have timestamps of just a day or so ago).
2.4.17 had some privilege escalation holes, meaning a local user can
become root. What services and what versions were you running?
cheers,
Jamie
-- James Riden / j.riden@massey.ac.nz / Systems Security Engineer Information Technology Services, Massey University, NZ. GPG public key available at: http://www.massey.ac.nz/~jriden/
- Next message: Bill Unruh: "Re: Windows 2000 Source Code File"
- Previous message: Mark Olbert: "Tracking Down Security Hole"
- In reply to: Mark Olbert: "Tracking Down Security Hole"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
