> From: David Tyler [mailto:[EMAIL PROTECTED]
> Subject: fex* war malware
>
> THE SAFEGUARD AGAINST THIS IS TO CHANGE THE DEFAULT TOMCAT
> MANAGER APP PASSWORD.
That would be tricky, since, by default, there is no manager app password or
even role in conf/tomcat-users.xml; out
David Tyler wrote:
> I have encountered this in September 2008. Here is what I have found:
>
> 1) There are several variants such as: fexcep OR fexcepkillshell OR
> fexcepshell OR fexcepspshell OR fexception OR fexshell OR fexsshell
>
> 2) It appears to be distributed using an automated scann
I have encountered this in September 2008. Here is what I have found:
1) There are several variants such as: fexcep OR fexcepkillshell OR
fexcepshell OR fexcepspshell OR fexception OR fexshell OR fexsshell
2) It appears to be distributed using an automated scanner that looks for the
manager
