Miss Yvette Seifert wrote
> Our technical contact called me this morning and told me that we were
> hacked. Our news server was sending out some Hindu newspaper.
> Apparently,
> some Indian nationals hijacked our news port.
>
> ...
well, I'd say that before getting too excited, you should verify thhat you
have
been really hacked, and what kind of attack has been peretrated.
I am not saying that you should close your eyes and wait for the sun to
shine again.
but security requires that you have a clear view of your situation.
so, if the "technical contact" said you're hacked, start by asking them for
precise
statements about that. As a math prof used to say, "unjustified claims are
of no value".
They only add a level of rumours.
Once you get facts, not rumours (any claim that is unjustifed or lacks a
sufficient level of
precision is posibly a rumour), then check your news server configuration.
After all, the job of a newserver is to send articles,
so when I hear that a news server sent "out some Hindu newspaper", I don't
feel alarmed.
The news server doesn't know what Hindu is, so if the configuration allows
forward of such
articles, it will forward them. The first task is then to check the
configuration.
Only then should you get alarmed (unless you are alarmed all the time, which
may be good for
your network [though I doubt...], but is bad for your health. security holes
or not, one must
sleep from time to time. "loosing rest" would be a DoS attack).
Since you said you're using BSD, let me jump in for some seconds of
advertisement:
You got the right OS. Breath and feel powered.
PS. This is not a call for flame nor a Request For Religious War.
Anyway, I'm not modest enough to talk about OSes with people who
do not consider BSD to be the best OS ;-P
regards,
mouss
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
