Alvin Oga schrieb:
either case can be solved by: security1.debian.org in LA
and security2.debian.org in NYC and security3.debian.org in berlin :-)
This is interessting but:
Reading Package Lists... Done
Building Dependency Tree
Reading extended state information
Initializing package states...
Am Montag, 13. September 2004 14:07 schrieb [EMAIL PROTECTED]:
> I tried to download file at 142.176.141.5/tmp ("exe" file itself), but
> it says 404 not found. There are several IP adresses, so maybe someone
> will have better luck.
We have managed to catch the uploaded binary. After decompressin
Am Wednesday, 1. September 2004 14:24 schrieb Marcin Owsiany:
> Check whether the index.php looks like something that was created by
> the attacker, or it is just a legitimate but buggy script file.
It is a normal index.php File from a legitimate user. It seems to be
programmed poorly, because it
Am Wednesday, 1. September 2004 01:32 schrieb Marcin Owsiany:
> A DoS does not necessarily mean a lot of traffic byte-wise. Remember
> that it only takes 2 packets sent and one received to initiate a TCP
> connection. And creating a huge number of connections certainly can be
> considered a DoS.
Yo
On Tuesday 31 August 2004 03:24, Marcin Owsiany wrote:
> On Tue, Aug 31, 2004 at 12:59:48AM +0200, Timo Veith wrote:
> > On Monday 30 August 2004 21:06, Marcin Owsiany wrote:
> > I added a iptables rule to the OUTPUT chain dropping all tcp packets
to
> > that box:port and
Hello Marcin,
thank you for your reply.
On Monday 30 August 2004 21:06, Marcin Owsiany wrote:
> On Mon, Aug 30, 2004 at 03:50:35PM +0200, Timo Veith wrote:
> > My question is, have I been hacked?
>
> Probably. Do you run PHP? Buggy PHP scripts are a common attack vector
> these
Hi list,
I have a apache process which takes 99 % cpu. Its not common that a apache
proc takes that much cpu on this system. I noticed it on my rrd load and
cpu usage graph. It's on since yesterday about 22:00.
top also lists the process with a name of "exe". Running under the user id
of www-d
Am Monday, 23. August 2004 19:38 schrieb PaulNM:
> Just a note:
>
> I have 149 emails in my deb-sec-announce folder. The earliest is dated
> 12/30/2003, and the latest is 8/18/2004. Security announce is NOT a
> high volume list, if that's your concern.
>
> PaulNM
High volume is not my concern and
Hi list,
if I have a package on hold for some reason AND I would not read
debian-security-announce, how could I get to know whether there is a
secury update for that package ?
TIA
Timo
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PRO
9 matches
Mail list logo
