Date: Wed, 18 Jun 2003 12:17:03 +0100 From: Loz <fbsd-q@bosh.org> To: Jaime <jaime@snowmoon.com> Cc: freebsd-questions@freebsd.org Subject: Re: ping: sendto: No buffer space available Message-ID: <20030618111702.GB26199@bosh.org> In-Reply-To: <20030617194247.C99305@malkav.snowmoon.com> References: <200306172227.h5HMRnN4014581@peedub.jennejohn.org> <20030617194247.C99305@malkav.snowmoon.com>
next in thread | previous in thread | raw e-mail | index | archive | help
* Jaime <jaime@snowmoon.com> [2003-06-18 00:49]: > The clues to a crack are evident, too. A process "/usr/sbin/nscd" > is running on the box according to top and ps, but the file does not > exist. Further more, I never told such a process to execute. Shortly > after a reboot, a netstat command showed a connection to 37303 on a remote > host. I was the only person logged in and I did not initiate that > connection. Sounds familiar - a friend had a Linux box cracked over the weekend... apparently russian script kiddies using a php gallery exploit. Sorry I don't have any more details, but I do know that in his case at least nothing else was compromised. He found all the answers he needed on Google. good luck, /loz.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030618111702.GB26199>