Glad to hear it all worked out OK. I had a feeling it would.
As final replies:
The disk is write protected isn't it?
I normally just boot the disk and then eject it until it is needed again.
Now, it's just me, but I write protect it after I do any and all backups,
then leave it in. If the
Tony wrote:
snip
Now, it's just me, but I write protect it after I do any and all backups,
then leave it in. If the power fails, or I need to reboot, then I don't
have to make a trip over and push the diskette in.
One problem with this is the diskette window will be open and it will
collect
I cast out an awfully short sighted 'Does this indicate I've been hacked'
message a while back. Thanks everyone for the quick responses and now I
hope to share what I've found. Tony and Lynn were first on the scene and
pointed out likely forms of response I'd want to take. Lynn in response
On Thursday 09 January 2003 12:30 am, Tony wrote:
Hi Lynn,
When you say you, you mean the original poster...right? I was responding
to him.
Yep, however Sandro uses Portsentry and indicates that this is normal
operation of PortSentryso it is not a hack, but rather someone likely
trying
.
Later
Tony
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Lynn Avants
Sent: Tuesday, January 07, 2003 11:46 PM
To: leaf-user
Subject: Re: [leaf-user] Does this indicate I've been hacked?
On Tuesday 07 January 2003 01:08 pm, Dennis Stephens wrote
On Wednesday 08 January 2003 07:42 am, Tony wrote:
Well, my thought is...why not just reboot to be sure. I mean, your LEAF
box is running out of RAM disk right?
All LEAF variants do, you haven't stated what you are specifically using.
The disk is write protected isn't it?
Only you can
Judging by the name add2chain should be a script which would add the
IP of the person who is doing portscan against you into firewall. It
doesn't look like a hack to time.
Lynn Avants wrote:
On Tuesday 07 January 2003 01:08 pm, Dennis Stephens wrote:
Saw the following in my syslog
Jan 3
Saw the following in my syslog
Jan 3 15:17:12 ardentpursuit portsentry[1120]: attackalert: External
command run for host: 218.156.227.172 using command: /root/add2chain
218.156.227.172 12345
Did that command actually run, or did portsentry prevent it from running?
No, you weren't hacked.
, January 08, 2003 10:26 AM
To: leaf-user
Subject: Re: [leaf-user] Does this indicate I've been hacked?
On Wednesday 08 January 2003 07:42 am, Tony wrote:
Well, my thought is...why not just reboot to be sure. I mean, your LEAF
box is running out of RAM disk right?
All LEAF variants do, you
Hi Brad,
I know, hence my last sentence :-)
Later,
Tony
On Wed, 08 Jan 2003 08:42:33 EST Tony wrote:
Well, my thought is...why not just reboot to be sure. I mean, your LEAF
box
is running out of RAM disk right? The disk is write protected isn't it?
Now, that doesn't mean that it can't
On Tuesday 07 January 2003 01:08 pm, Dennis Stephens wrote:
Saw the following in my syslog
Jan 3 15:17:12 ardentpursuit portsentry[1120]: attackalert: External
command run for host: 218.156.227.172 using command: /root/add2chain
218.156.227.172 12345
Did that command actually run, or did
11 matches
Mail list logo
