[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: we were attacked

Did you take the security precaution to become prepared before? Do you
tell these? Because the problem isn't appearing in Apache web server. I
lived such events and saw my own mistake everytime..

> On Tuesday 11 April 2006 09:16, danilo lujambio wrote:
>> thanks for all of the answers. I am not a sysadmin, only a person with
>> experience in linux and we work in a non for profit organization ,
>> because of that, we don't have resources to pay a good sys admin :-) .
>> All the mails for you , tought me something.
>> Today finally we are in serious problem. The sintom was that web server
>> answer with 403 forbidden and we couldn't login with ssh . After an hour
>> of working  we found that log of sshd told  login_get_lastlog couldn't
>> find user id ..... . Now I just found that we have a / directory
>> changed to mode 700 and tmp directory to 1700

Ozgur Karatas
Network Administrator

ozgur@ozgurkaratas.com ~ www.ozgurkaratas.com
"Security is the most important thing. The key of the security is at the
person himself."

Reply to: