Date: Fri, 21 Sep 2001 09:06:01 -0700 From: ybbor@freedom.net To: <freebsd-questions@FreeBSD.ORG> Subject: Freebsd being hacked Message-ID: <20010921160628.5AD2337B41A@hub.freebsd.org>
next in thread | raw e-mail | index | archive | help
Zero-Knowledge MIME Encapsulated Message
------=_NextPart_000_0005_01C1427C.A2DE9A80
Content-Type: text/plain;
charset = "iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Hello,
I have a Breebsd server. It was running freebsd 3.x(not exactly sure) =
and last week somone used that telnet exploit. so i ran that patch on =
your site. then i downloaded the freebsd 4.4 iso and upgraded my =
system. =20
Today i try to log in to my computer and i can't telnet in to it. So i =
went to the box, and i can't log in to it. on the screen it says there =
was an 'su pop to toor'. and that the kernel log was full. it looks =
like i was hacked, so i unpluged the comptuer from the network and now i =
don't know what to do. =20
how do i log in to a comptuer if someone changed the root password and =
disabled every other account?
thanks
-Robby Ticknor
________________________________________________________________________
Protect your privacy! - Get Freedom 2.0 at http://www.freedom.net
------=_NextPart_000_0005_01C1427C.A2DE9A80
Content-Type: text/html;
charset = "iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content=3D"text/html; charset=3Diso-8859-1" =
http-equiv=3DContent-Type>
<META content=3D"MSHTML 5.00.3211.1700" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#d8d0c8>
<DIV><FONT face=3DArial size=3D2>Hello,</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>I have a Breebsd server. It was =
running=20
freebsd 3.x(not exactly sure) and last week somone used that telnet=20
exploit. so i ran that patch on your site. then i downloaded =
the=20
freebsd 4.4 iso and upgraded my system. </FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>Today i try to log in to my computer =
and i can't=20
telnet in to it. So i went to the box, and i can't log in to =
it. on=20
the screen it says there was an 'su pop to toor'. and that the =
kernel log=20
was full. it looks like i was hacked, so i unpluged the comptuer =
from the=20
network and now i don't know what to do. </FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>how do i log in to a comptuer if =
someone changed=20
the root password and disabled every other account?</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>thanks</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>-Robby =
Ticknor</FONT></DIV><P><TT>
________________________________________________________________________
<BR>
Protect your privacy! - Get Freedom 2.0 at
<A HREF="http://www.freedom.net">http://www.freedom.net</A></TT>;
</P>
</BODY></HTML>
------=_NextPart_000_0005_01C1427C.A2DE9A80--
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010921160628.5AD2337B41A>