Mailinglist Archive: opensuse-security (220 mails)

< Previous Next >
RE: [suse-security] Intrusion
  • From: Lovette Burland <Lovette.Burland@xxxxxxxxxxxxx>
  • Date: Mon, 24 Nov 2003 15:49:56 -0000
  • Message-id: <E671455BAF0BFC43B8B31A6455348E7F03279389@xxxxxxxxxxxxxxxxxxx>
Well if it is a mail server then I presume it's in the demilitarized zone
(DMZ). If not then put it in DMZ. and secure all login to the local net via
a firewall.

-----Original Message-----
From: Antun Balaz [mailto:antun@xxxxxxxxxxxx]
Sent: 24 November 2003 15:38
To: Togan Muftuoglu
Cc: suse-security@xxxxxxxx
Subject: Re: [suse-security] Intrusion



Unfortunately,
I have 100+ users, my server is mail and web server, so it is impossible
to just disconnect it and install from scratch. Besides, all security
pathes were allready applied, so this will not help me, or I am mistaken?

Any other suggestions?

Thanks,
Antun

-------------------------------------------
Antun Balaz
http://www.phy.bg.ac.yu/~antun/

Institute of Physics, Belgrade
Serbia and Montenegro
http://www.phy.bg.ac.yu/
-------------------------------------------


On Mon, 24 Nov 2003, Togan Muftuoglu wrote:

> * Antun Balaz; <antun@xxxxxxxxxxxx> on 24 Nov, 2003 wrote:
> >
> >Hi to all,
> >it seems that I have a serious problem, although I updated my SuSE 8.1
> >server quite recently (all security updates were applied).
> >
> >I have two questions:
> >
> >1) What to do right now to prevent any misconduct of my server?
>
> Immediately disconnect the machine from the Internet
>
> >2) How to clean up the server?
>
> Make a clean install from scratch and make sure before putting it back
> to the net all patches are applied either use fou4suse or YOU to
> automate the process.
>
> HTH
> --
>
> Togan Muftuoglu
> Unofficial SuSE FAQ Maintainer
> http://susefaq.sf.net
>
>
>
> --
> Check the headers for your unsubscription address
> For additional commands, e-mail: suse-security-help@xxxxxxxx
> Security-related bug reports go to security@xxxxxxx, not here
>
>
>



--
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here


_____________________________________________________________________

This message has been checked for all known viruses on behalf of Vivista by
MessageLabs.

http://www.messagelabs.com or Email: mailsweeper.info@xxxxxxxxxxxxx

Vivista formerly Securicor Information Systems for further information
http://www.vivista.co.uk



**********************************************************************
The information contained in this e-mail message is intended
only for the individuals named above. If you are not the
intended recipient, you should be aware that any
dissemination, distribution, forwarding or other duplication
of this communication is strictly prohibited. The views
expressed in this e-mail are those of the individual author
and not necessarily those of Vivista Limited.
Prior to taking any action based upon this e-mail message
you should seek appropriate confirmation of its authenticity.
If you have received this e-mail in error, please immediately
notify the sender by using the e-mail reply facility.
**********************************************************************


_____________________________________________________________________

This message has been checked for all known viruses on behalf of Vivista by MessageLabs.

http://www.messagelabs.com or Email: mailsweeper.info@xxxxxxxxxxxxx

Vivista formerly Securicor Information Systems for further information http://www.vivista.co.uk


< Previous Next >