Hi Gurus,
I had another hacker atack to my system... this time more efective :(
The hacker get the file /etc/passwd from my machine via tftpd... and
now I'll need to change all passwords :(
I want to now what I can do to minimize this atacks... I try to install
C2 security, but I cant login as root after do that! (I need to restore
the system from a backup to grant access !)
Someone can give me tips on what I can do to use shadow passwords,
and setup the C2 security!
Thanks in advance,
Antonio.
Ps.: if someone needs TFTP like me... list all valid directories to tftp
from on the inetd.conf command line, without it anybody can get your
files!
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Antonio S. Martins Jr. - System Analist |Surfing in the Net... |
| WorldNet Internet Maringa - PR - Brasil | |
| E-Mail: shadow_at_wnet.com.br | ...at Warp Speed !!!|
| webmaster_at_wnet.com.br | |
| shadow_at_uem.br | !!! Team OS/2 Brasil !!! |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
"Only The Shadow Knows what evil lurks in the Heart of Men!"
Received on Mon Jan 20 1997 - 23:32:20 NZDT