[SGVLUG] sgvlug.org site hacked

matti mathew_2000 at yahoo.com
Tue Nov 10 17:36:32 PST 2009


absolutely spot on...

typically I would suspect the would want to use
it to send spam and setup a warez site...

best
matti


--- On Tue, 11/10/09, Dan Kegel <dank at kegel.com> wrote:

> From: Dan Kegel <dank at kegel.com>
> Subject: Re: [SGVLUG] sgvlug.org site hacked
> To: "SGVLUG Discussion List." <sgvlug at sgvlug.net>
> Cc: "Rae Yip" <rae.yip at gmail.com>, "mathew_2000 at yahoo.com" <mathew_2000 at yahoo.com>
> Date: Tuesday, November 10, 2009, 4:50 PM
> The reason a wipe-and-reinstall is in
> order is:
> you have no idea what the hackers did.  They might
> have installed a rootkit.  Better play it safe!
> Everybody who has ever logged in to other systems
> from that system should change all their passwords
> (though who knows, might be too late).
> 
> Outgoing ssh should be also disabled from the server
> after reinstall to protect people from keylogging
> rootkits.
> - Dan



      


More information about the SGVLUG mailing list