Date: Sun, 6 Sep 1998 18:32:32 -0700 (PDT) From: Doug White <dwhite@resnet.uoregon.edu> To: Jim Mock <jim@phrantic.phear.net> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: questions Message-ID: <Pine.BSF.4.00.9809061831480.18759-100000@resnet.uoregon.edu> In-Reply-To: <Pine.BSF.4.02A.9809010646140.8666-100000@phear.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 1 Sep 1998, Jim Mock wrote: > Ok, I might be clueless and/or a complete moron, but I've got a few > questions about restoring files to the original/upgrading to a later > version. > > Here's the deal.. I'm running 2.2.5-RELEASE, and recently the box has been > hacked. I've managed to block out the attackers using ipfw and tcp > wrappers, but after reading some stuff on CERT's site, I started checking > the files on the machine in question with another machine and found some > differences.. here they are.. > > **** ls **** [file size changes] > My question is this.. a) how do i go about replacing those files with the > originals without reinstalling, and b) I've got other machines running the > same release and I was wondering if I could copy the files from the other > box and replace the ones in question. I'm not sure if that'd work or not, > so I figured I'd ask. Yeah, it'll work fine. This is what the Live Filesystem CD is for. :) And mtree. Doug White | University of Oregon Internet: dwhite@resnet.uoregon.edu | Residence Networking Assistant http://gladstone.uoregon.edu/~dwhite | Computer Science Major To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.00.9809061831480.18759-100000>