From owner-freebsd-questions Tue May 30 21:24:35 2000 Delivered-To: freebsd-questions@freebsd.org Received: from gold.killercomputing.com (ATHM-216-216-77-156.home.net [216.216.77.156]) by hub.freebsd.org (Postfix) with ESMTP id 472EB37B7C1 for ; Tue, 30 May 2000 21:24:32 -0700 (PDT) (envelope-from pulcher@killercomputing.com) Received: from popgun ([199.233.181.2]) by gold.killercomputing.com (8.9.3/8.9.3) with SMTP id XAA84873; Tue, 30 May 2000 23:27:42 -0500 (CDT) (envelope-from pulcher@killercomputing.com) Message-ID: <021901bfcab9$5d078e40$02b5e9c7@killercomputing.com> From: "Harold Pulcher - Killer Computing" To: , References: Subject: Re: Users can't loggin now! Date: Tue, 30 May 2000 23:33:25 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2314.1300 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > My FreeBSD box was hacked cause of a vunerbailty in qmail and I can't > login remotly or at the console anymore > Only root console logins are possible If you allow root logins from anything but the console you are just asking for problems. > It says can't find root directory > > What directoryu should I chmod or what to fix the problem Some of the other fellows have commented on what could be done. My suggestion is that you backup the user stuff you care about(and are pretty sure that ain't hacked), and reinstall. Even if you believe you have gotten everything, there is always that question. Not to scare you, but I know a lot of people that got hacked. Usually the script kiddies do a "rm -rf *" in some directory they believe to be important. Harold To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message