/etc/inetd.conf for one, to see if there are any strange entries
/etc/passwd for funky stuff
also doing 'netstat -a' to see which ports are listening that maybe
shouldn't be.. but usually checking inetd.conf will fix most of this.
That's my 2 cents
On Tue, 5 Dec 2000, Scott Skrogstad wrote:
> I might have been hacked but I am not sure. I have two servers that I
> have been able to ftp into now all of a sudden I connect give it my user
> name and password and it says invalid password and drops me. I can turn
> around and telnet in just fine. I thought it was a problem only on one
> server and now I find it has just happen to a server that I have always
> been able to ftp into.
>
> What the heck to I check?
>
> Scott Skrogstad
> Computer Integration Inc,
> [EMAIL PROTECTED]
> 800-522-3475 Phone
>
>
>
> _______________________________________________
> Redhat-list mailing list
> [EMAIL PROTECTED]
> https://listman.redhat.com/mailman/listinfo/redhat-list
>
--
-Statux
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
