[CentOS] I've been hacked -- what should I do next?

Mon Dec 4 22:25:59 UTC 2006
Ralph Angenendt <ra+centos at br-online.de>

Alfred von Campe wrote:
> On Dec 1, 2006, at 15:43, Aleksandar Milivojevic wrote:
> >You can use a whois database to find the info (for example, there's  
> >web interface on www.ripe.net).  Info for 61.43.153.30 indicates  
> >that this IP address is alocated to an provider in South Korea.
> 
> So I sent mail to the address (abuse at bora.net) listed in the whois  
> record for that ISP, and it bounced!

If they weren't already listed at
<http://rfc-ignorant.org/tools/lookup.php?domain=bora.net> I'd advise
you to list them there. As they are already listed - well, ignore them.
They're not worth to get any attention on the net.

Ralph
-- 
Ralph Angenendt......ra at br-online.de | .."Text processing has made it possible
Bayerischer Rundfunk...80300 München | ....to right-justify any idea, even one
Programmbereich.Bayern 3, Jugend und | .which cannot be justified on any other
Multimedia.........Tl:089.5900.16023 | ..........grounds." -- J. Finnegan, USC
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://lists.centos.org/pipermail/centos/attachments/20061204/aeaab591/attachment-0005.sig>