Re: Is this an attack?

To: "Raoul Bhatia [IPAX]" <r.bhatia@ipax.at>, Rodolfo Barbosa <barbosa.rodolfo@lunarconsultoria.com.br>
Cc: Debian ISP <debian-isp@lists.debian.org>
Subject: Re: Is this an attack?
From: Thomas Goirand <thomas@goirand.fr>
Date: Tue, 07 Dec 2010 21:46:36 +0800
Message-id: <1291729596.2417.5.camel@Nokia-N900-42-11>
Reply-to: Thomas Goirand <thomas@goirand.fr>
In-reply-to: <4CFE30F4.7070103@ipax.at>
References: <000f01cb960c$00206c90$006145b0$@rodolfo@lunarconsultoria.com.br> <4CFE30F4.7070103@ipax.at>

----- Original message -----
> simply upgrading the server will not make exploits like this go away.
> you should check your apache logfiles (do not forget about the error
> logs) and look for any suspicious output (e.g. wget output).

But having a not upgraded kernel might help to
become root!

Thomas

Reply to:

References:
- Is this an attack?
  - From: "Rodolfo Barbosa" <barbosa.rodolfo@lunarconsultoria.com.br>
- Re: Is this an attack?
  - From: "Raoul Bhatia [IPAX]" <r.bhatia@ipax.at>

Prev by Date: Re: Is this an attack?
Next by Date: Re: Is this an attack?
Previous by thread: Re: Is this an attack?
Next by thread: Re: Is this an attack?
Index(es):
- Date
- Thread