4 May
2006
4 May
'06
10:19 a.m.
Kai Schaetzl wrote:
Nick wrote on Thu, 04 May 2006 14:43:20 +1000:
Bindz.... hmm. telnetting to the port gave me a root shell
You should suspect some php app or at least a web-based intrusion. Break-ins this way usually don't get the intruder a root shell. And what
Yeppers. From interest, was the box selinuxed up Nick? Because AIUI that should have said no to running shells from Apache.
-Andy