From owner-freebsd-questions Fri Nov 20 07:52:43 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA16777 for freebsd-questions-outgoing; Fri, 20 Nov 1998 07:52:43 -0800 (PST) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from alcatel.fr (ns.alcatel-alsthom.fr [194.133.58.131]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA16769 for ; Fri, 20 Nov 1998 07:52:41 -0800 (PST) (envelope-from Thierry.Herbelot@alcatel.fr) From: Thierry.Herbelot@alcatel.fr Received: from alcatel.fr (gatekeeper-ssn.alcatel.fr [155.132.180.244]) by mailgate.alcatel.fr (ALCANET/SMTP) with ESMTP id RAA12841; Fri, 20 Nov 1998 17:50:57 +0100 Received: from lune.telspace.alcatel.fr (lune.telspace.alcatel.fr [155.132.144.65]) by aifhs2.alcatel.fr (ALCANET/SMTP2) with ESMTP id QAA22927; Fri, 20 Nov 1998 16:50:08 +0100 (MET) Received: from telss1 (telss1.telspace.alcatel.fr [155.132.51.4]) by lune.telspace.alcatel.fr (8.9.1a/8.9.1) with SMTP id QAA05269; Fri, 20 Nov 1998 16:32:15 +0100 (MET) Received: from telspace.alcatel.fr by telss1 (4.1/SMI-4.1) id AA27064; Fri, 20 Nov 98 16:35:47 +0100 Received: from localhost by telspace.alcatel.fr with SMTP (1.40.112.12/16.2) id AA026755712; Fri, 20 Nov 1998 16:28:32 +0100 X-Openmail-Hops: 1 Date: Fri, 20 Nov 98 15:39:21 +0100 Message-Id: In-Reply-To: <36557493.A9E1BBC@cctinc.net> Subject: I need some help. Mime-Version: 1.0 To: mike@cctinc.net Cc: freebsd-questions@FreeBSD.ORG Content-Type: text/plain; charset=US-ASCII; name="I" Content-Disposition: inline; filename="I" Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > Hello, > I have two quick questions for you....I hope you can help me. > > 1. I am building a new server and adding larger hard disks. I have > already created all the files systems (/, var/ usr/) and made the main > drive boot able. What I need to knwo is how do I make the procfs file > system? I don't believe it is a real file system but something the > server creates on its own. I tried to mount it but it would not work. > Do I have to worry about it or will the system just mount it when I > restore all the existing data to the new drive and boot up? > > 2. I have been having a problem with spam the last few days and I > have been attempting to block it. However one guy keeps getting in. I > got this message in my process list when I used a ps-ax; > 2070 ?? I 0:00.00 this iz mY 3l1t3 baCkd00r (bind) > What is this? Is there a security hole in Free BSD? There are security holes in any system (any machine) if it is not cared for. FreeBSD seems to have less "built-in" holes than other altenatives. That said : You've almost certainly been hacked ==> isolate your machine from Internet as soon as possible (to get it out of reach of a hacker) ==> back up all the **data** that you have on the machine ==> reformat your disk and reinstall all your software from a **known good** media (obviously not from a backup, as it may have been corrupted) ==> read about computer security (I don't have references, but the FreeBSD www site has a good bibliography) ==> there is also a web page on "FreeBSD hardening" referenced from FreeBSD (search for it with the button on the first page of the site) Hope you will recover TfH > > I am getting concerned about this. I have a lot of clients hosting with > my server and from what this looks like there is a backdoor someone is > using on my server. Can you please help me? > > Thank you for your time! > Mike Alich > > > -- > Mike Alich > mike@cctinc.net > Cyber Communication Technologies, Inc. > Web Hosting and Internet Solutions. > http://www.cctinc.net > Virtual Web Hosting $14.95 per month > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message