we had a honey pot
hit by some canny FTP kiddies using the RPC flaw to load up an FTP server that
ran as a service and also then execute a predifned further attack on some
specific IP's any one else seen this. very similar exploit to nachia "whatever
its called" worm
the attack came from
two uni's one in Holland and one in germany.
The user name for
the ftp server they set up was fast and pword was fill!! haxor humor no
doubt!
Anyone seen anything
like this too.
RF