Home > Security > Email Problem Follow-up

Email Problem Follow-up

May 28, 2005 Posted by KP

It has been one week since I stopped postfix and disabled the mail command (#chmod 444 /usr/bin/mail), everything seems fine. I restarted postfix and notified my ISP, they told me they would keep watching this server. Since this server doesn’t host any critical or major websites, I can take the risk - if anything bad happens again, I will make an OS reload.

According to some Blogs about Awstats exploit, the hackers modified their web pages and very probably gained shell access. Assuming the spammer didn’t gain my shell account, that could be because:

1. The spammer is not “professional enough” to hack into my box - this is very unlikely, since they used the exploit for “business purpose”.

2. FreeBSD is more secure, he wasn’t able to gain the shell account even they used the exploit and had enough time. I have to love FreeBSD more if that’s the case.

Bookmark and Share


Related Posts:

Filed Under: Security

Leave a Comment









*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Click to hear an audio file of the anti-spam word


Subscribe via RSS/EMail


Categories

Archives

Meta