3 May
2005
3 May
'05
23:00
The Saturday 2005-04-30 at 09:41 -0400, Hipolito A. Gonzalez M. wrote:
This week, in a customer, I have a lot of bad password for user root, and after three or four days, the got the password and enter, trying and trying.!!! But in my case, was only a amateur, only change the password for root, and the logins was only for 1 minute!
That could be enough, he could have installed a back door in that time. Root should not be allowed to login remotely. If they know a user name, it's just a question of launching a dictionary attack till they find the password. In time, they get it. -- Cheers, Carlos Robinson