Re: we were attacked
Hello,
Did you take the security precaution to become prepared before? Do you
tell these? Because the problem isn't appearing in Apache web server. I
lived such events and saw my own mistake everytime..
> On Tuesday 11 April 2006 09:16, danilo lujambio wrote:
>> thanks for all of the answers. I am not a sysadmin, only a person with
>> experience in linux and we work in a non for profit organization ,
>> because of that, we don't have resources to pay a good sys admin :-) .
>> All the mails for you , tought me something.
>> Today finally we are in serious problem. The sintom was that web server
>> answer with 403 forbidden and we couldn't login with ssh . After an hour
>> of working we found that log of sshd told login_get_lastlog couldn't
>> find user id ..... . Now I just found that we have a / directory
>> changed to mode 700 and tmp directory to 1700
--
Ozgur Karatas
Network Administrator
ozgur@ozgurkaratas.com ~ www.ozgurkaratas.com
---------------------------------------------
"Security is the most important thing. The key of the security is at the
person himself."
Reply to: