[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: BIND exploited ?

On Fri, 4 Jan 2002 17:54, Andy Bastien wrote:
> On Fri Jan 04, a day that will live in infamy, Russell Coker wrote:
> > On Fri, 4 Jan 2002 03:16, Thedore Knab wrote:
> > >  Where do I go from here ?
> >
> > Buy new hard drives, install them and install the latest version of your
> > favourite distribution and configure it in a secure fashion.  Make sure
> > that all passwords are different.
>
> Is it really necessary to buy new hard drives?  Is there a reason why
> he can't just reformat his current drives before reinstalling?

Sure he can, if he wants to lose the evidence of what happened and lose the 
possibility to hand the drives over to law enforcement officials (which may 
be demanded of him even if he doesn't want it in the case that his machine 
was used to attack others).

-- 
http://www.coker.com.au/bonnie++/     Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/       Postal SMTP/POP benchmark
http://www.coker.com.au/projects.html Projects I am working on
http://www.coker.com.au/~russell/     My home page
Reply to: