Strange command histories in hacked shell server
Jerry Bell
jerry at syslog.org
Fri Dec 17 07:51:38 PST 2004
Did I understand correctly, that anyone can connect to the shell server
and create an account for themselves?
I have a somewhat rudimentry hardening guide for FreeBSD at
http://www.syslog.org/Content-5-4.phtml
I've tried to keep it up-to-date, but I have yet to incorporate MAC, which
I think will help out a good bit more.
I hope you find this a useful.
Jerry
http://www.syslog.org
Ganbold <ganbold <at> micom.mng.net> wrote:
>Please give me some advice and info regarding this kind of hack.
>What should I do in order to secure my shell server? I mean except
>securelevel, unneeded services etc.
>Can somebody give me some hints on file and directory permissions?
>Is there anybody who has similar server config and already had such issues
>and problems?
More information about the freebsd-security
mailing list