[TriLUG] invisible directories...

Gregory Woodbury ggw at wolves.homeip.net
Tue Apr 22 00:30:10 EDT 2003


"It was written once upon a time (by Turnpike Man):"
> 
> Reading all this is kinda disturbing.  I hate seeing this kind of crap going
> on.  Are there ways he could have prevented this, besides never plugging in to
> a network?  Was his FTP the most probable point of entry?  If you find out how
> they did it, I'd love to know, thanks and good luck jeff.
> 
> David M.

Installing a firewall, and keeping the system up to date are the primary
defenses.

I suspect that FTP might be the problem, especially if he is *not* using
vsftpd.  The selection of what server program to use, and keeping them
up to date are critical.

I once had a RH5.x box cracked via a BIND (DNS) exploit, but that was
long ago and not so far away.

-- 
Gregory G. "Wolfe" Woodbury   `-_-'         Owner/Admin: wolves.durham.nc.us
ggw at wolves.durham.nc.us      U
"The Line Eater is a               Hug your wolf.
 Boojum Snark"



More information about the TriLUG mailing list