hacked, then intrusion detection system

To: <debian-user@lists.debian.org>
Subject: hacked, then intrusion detection system
From: <mgriffa@fibertel.com.ar>
Date: Sat, 3 Feb 2001 19:02:08 -0300 (ART)
Message-id: <[🔎] Pine.LNX.4.30.0102031858150.1318-100000@marla.juncal.org>

Hi.
	I just realized that someone entered my debian box with
cablemodem. I couldn't find anything in the logs, but the pump package was
deleted.
	I replaced inetd for xinetd. took off services I didnt't use (It
was left all default, as I installed in a rush), and now I'd like a good
intrusion detection system.
	I'd like to hear about any advices about not security (too wide)
but tools to run in cron and which may be usefull for this kind of
situations.
Thanks!

Reply to:

Follow-Ups:
- Re: hacked, then intrusion detection system
  - From: ktb <x.y.f@home.com>
- Re: hacked, then intrusion detection system
  - From: Damon Muller <dm-debian-user@empire.net.au>
- Re: hacked, then intrusion detection system
  - From: John Galt <galt@inconnu.isu.edu>

Prev by Date: QuarkXpress files in Linux?
Next by Date: Re: re CD-RW
Previous by thread: Dual Monitors
Next by thread: Re: hacked, then intrusion detection system
Index(es):
- Date
- Thread