I was hacked last night I was suddenly getting a huge load on my
system. Looking at "top", I found a file td running with many
instances. In searching, I found the file in /dev/chr/client. I found
where the user x and noc were used and then deleted.
How can I find where the logins came from. For now I have disabled telnet,
except locally as I will use ssh to check my mail remotely.
Any ideas how they may have got in, or what should I look for to get more
info on this.
TIA
------------------------------------------------------------------------
"If you're not one of us, you are one of them" Morpheus
Brian Schneider [EMAIL PROTECTED] www.liberty.ddns.org
________________________________________________________________________
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list