Re: help:site hacked
From: Jonathan Maltz [MS-MVP] (jmaltz_at_mvps.org)
Date: 06/28/04
- Previous message: Scott Elgram: "Re: file security"
- In reply to: Hernán Castelo: "help:site hacked"
- Next in thread: Hernán Castelo: "Re: help:site hacked"
- Reply: Hernán Castelo: "Re: help:site hacked"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 28 Jun 2004 16:36:50 -0400
Hi,
Stay up to date on security and other hotfixes
Get some sort of firewall
That's a good start
-- --Jonathan Maltz [Microsoft MVP - Windows Server, Virtual PC] http://www.visualwin.com - A Windows Server 2003 visual, step-by-step tutorial site :-) http://vpc.visualwin.com - Does <insert OS name> work on VPC 2004? Find out here Only reply by newsgroup. I do not do technical support via email. Any emails I have not authorized are deleted before I see them. "Hernán Castelo" <hcastelo@cedi.frba.utn.edu.ar> wrote in message news:%23ERCwhRXEHA.2520@TK2MSFTNGP12.phx.gbl... hi someone was hacked my site i have 2 servers : web--> IIS 5 / w2k adv Srv IIS lockdown sql--> SQL2k / w2k adv Srv i found the web srv doing "beeps" soon i found it serves html pages but don't serves asp with an error like "Error in the server application" sql srv lost sa password and don't recognize the local admin then i can't access to sql applications except of that, servers appears to work normal the web srv log is saying that attacked the iwam_ and many "login misses" under DCOMSCM and then, "login hits" i go now to restore my backup and images but what can i do to prevent the next attack ? how can i protect better the site ? thanks -- atte, Hernán
- Previous message: Scott Elgram: "Re: file security"
- In reply to: Hernán Castelo: "help:site hacked"
- Next in thread: Hernán Castelo: "Re: help:site hacked"
- Reply: Hernán Castelo: "Re: help:site hacked"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
