Picked up via usenet on comp.nz
http://www.theregister.co.uk/2009/09/12/linux_zombies_push_malware/
–
Cheers Malcolm °¿° (Linux Counter #276890)
SUSE Linux Enterprise Desktop 11 (x86_64) Kernel 2.6.27.29-0.1-default
up 6 days 7:26, 2 users, load average: 0.05, 0.03, 0.09
GPU GeForce 8600 GTS Silent - Driver Version: 190.18
People have been saying it was only a matter of time; the question is whether it is possible to keep one step ahead or at least so close behind that nothing lasts for long enough to do serious damage.
Hi
At least this seems easy to detect. I still wonder how they get in to hack the system. Wouldn’t that need a password AND port 22 open?
vodoo wrote:
> Hi
>
> At least this seems easy to detect. I still wonder how they get in to
> hack the system. Wouldn’t that need a password AND port 22 open?
>
>
Ssh doesn’t have to be open to crack a system. Since they are web
servers, if apache is an unpatched version they could be using that. Any
vulnerable service they left open could have been used to exploit the
system.