Re: Unknown BackDoor/Trojan
From: Alun Jones (alun@texis.com)
Date: 12/24/02
- Next message: mike singer: "Re: porn site's"
- Previous message: Karl Levinson [x y] mvp: "Re: Regedit.exe is forbidden"
- In reply to: x y: "Re: Unknown BackDoor/Trojan"
- Next in thread: Jerry Nezlick: "Re: Unknown BackDoor/Trojan using DynDns"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: alun@texis.com (Alun Jones) Date: Tue, 24 Dec 2002 14:52:40 GMT
In article <e2L8iAtqCHA.2496@TK2MSFTNGP12>, "x y" <levinson_k@excite.com>
wrote:
>Yes, this is a fairly common event where the Serv-U FTP server was installed
>on your server due to some vulnerability that has not been patched on it.
It would be rather churlish of me, as Serv-U is one of my competitors, to
suggest that you could adjust a virus scanner's definitions to block the
running of Serv-U, since it is a valid application, but if you do find
repeated incursions and you can't plug the holes that they come in through,
such an alteration might be warranted.
In general, though, the best thing to do would be to completely lock down your
firewall, so that even if the hacker has a listening server installed on your
system, he can't connect to it.
Alun.
~~~~
[Please don't email posters, if a Usenet response is appropriate.]
-- Texas Imperial Software | Try WFTPD, the Windows FTP Server. Find us at 1602 Harvest Moon Place | http://www.wftpd.com or email alun@texis.com Cedar Park TX 78613-1419 | VISA/MC accepted. NT-based sites, be sure to Fax/Voice +1(512)258-9858 | read details of WFTPD Pro for XP/2000/NT.
- Next message: mike singer: "Re: porn site's"
- Previous message: Karl Levinson [x y] mvp: "Re: Regedit.exe is forbidden"
- In reply to: x y: "Re: Unknown BackDoor/Trojan"
- Next in thread: Jerry Nezlick: "Re: Unknown BackDoor/Trojan using DynDns"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
