Re: [CentOS] OT: Strange message in root e-mail possiablly hacked!!! Not sure??

2009-08-17 Thread Christopher Chan
Dave, If you only going to answer the OP's questions and not make further points on replies, please reply to the OP's message directly. Dave wrote: On Sun, Aug 16, 2009 at 4:39 AM, Chan Chung Hang Christopherchristopher.c...@bradbury.edu.hk wrote: So I started looking around in /var/log.

Re: [CentOS] OT: Strange message in root e-mail possiablly hacked!!! Not sure??

2009-08-17 Thread Lee Perez
Lanny Marcus wrote: On Sun, Aug 16, 2009 at 7:51 AM, Lee Perezleeca...@windstream.net wrote: snip There is nothing on this server that I can not replace. Did I just get hacked? Should I wipe this thing and start over? Any and all advice is greatly appreciated!!! If you

Re: [CentOS] OT: Strange message in root e-mail possiablly hacked!!! Not sure??

2009-08-17 Thread Chan Chung Hang Christopher
I didn't know that IPCOP could run on one that old. I have one like that up in the attic, time to bring it back down. Before I upgraded to 5.3, I was running 4.7 with FireStarter and did not have any troubles. As soon as I get some sleep I will be looking in to setting it up. If it

[CentOS] OT: Strange message in root e-mail possiablly hacked!!! Not sure??

2009-08-16 Thread Lee Perez
Morning all, Little back ground. Running CentOS 5.3 fully update. I basically run this as router and gateway for home network. I have two(2) winblows machines hooked up. I am running samba for shares. I opened up root's mail this morning and found this strange little comment :

Re: [CentOS] OT: Strange message in root e-mail possiablly hacked!!! Not sure??

2009-08-16 Thread Robert Heller
At Sun, 16 Aug 2009 07:51:50 -0500 CentOS mailing list centos@centos.org wrote: Morning all, Little back ground. Running CentOS 5.3 fully update. I basically run this as router and gateway for home network. I have two(2) winblows machines hooked up. I am running samba for shares.

Re: [CentOS] OT: Strange message in root e-mail possiablly hacked!!! Not sure??

2009-08-16 Thread Chan Chung Hang Christopher
So I started looking around in /var/log. I looked at my secure logs and saw nothing out of the ordinary. I looked in samba and found a log file 58.239.84.158.log. I opened it up and it said the following: [2009/08/15 06:31:34, 0] lib/access.c:check_access(327) Denied connection from

Re: [CentOS] OT: Strange message in root e-mail possiablly hacked!!! Not sure??

2009-08-16 Thread Lanny Marcus
On Sun, Aug 16, 2009 at 7:51 AM, Lee Perezleeca...@windstream.net wrote: snip There is nothing on this server that I can not replace.  Did I just get hacked?  Should I wipe this thing and start over?  Any and all advice is greatly appreciated!!! If you eventually decide to wipe it and start

Re: [CentOS] OT: Strange message in root e-mail possiablly hacked!!! Not sure??

2009-08-16 Thread Dave
On Sun, Aug 16, 2009 at 4:39 AM, Chan Chung Hang Christopherchristopher.c...@bradbury.edu.hk wrote: So I started looking around in /var/log.  I looked at my secure logs and saw nothing out of the ordinary. Are you running denyhosts? By default I think it only covers ssh, but you can configure