Re: hacked, then intrusion detection system

To: mgriffa@fibertel.com.ar
Cc: <debian-user@lists.debian.org>
Subject: Re: hacked, then intrusion detection system
From: John Hasler <john@dhh.gt.org>
Date: 03 Feb 2001 18:16:27 -0600
Message-id: <[🔎] 87ae83s3ok.fsf@toncho.dhh.gt.org>
In-reply-to: mgriffa@fibertel.com.ar's message of "Sat, 3 Feb 2001 20:57:10 -0300 (ART)"
References: <[🔎] Pine.LNX.4.30.0102032047360.1548-100000@marla.juncal.org>

mgriffa writes;
> is there any way to full re-install the system from inside? like apt-get

If the machine has been cracked you cannot trust any executable on it
(including the kernel).  You can salvage your data and your config files
(if you audit them).  Fist thing to do is get the machine off the Net: if
it has been cracked it is being used to attack other machines.  You can use
'dpkg --get-selections > selections' and 'dpkg --set-selections < selections'
to set up your new system like the old one.  Man dpkg.

-- 
John Hasler
john@dhh.gt.org (John Hasler)
Dancing Horse Hill
Elmwood, WI

Reply to:

References:
- Re: hacked, then intrusion detection system
  - From: <mgriffa@fibertel.com.ar>

Prev by Date: boot problem
Next by Date: Re: boot problem
Previous by thread: Re: hacked, then intrusion detection system
Next by thread: Re: hacked, then intrusion detection system
Index(es):
- Date
- Thread