Scumbags
Some scumbag broke in to this server last week. I knew about one drupal exploit (in the comment code) but since only registered users (which I vet) can use that I thought I was okay. Didn’t know about the xmlrpc.php exploit 
Anyhow, box rebuilt from scratch, everything upto date and all important services restored (I’m taking the opportunity to tidy some stuff up). I was going to look at SELinux (on the todo list) but the packages for Debian are a tad out of date so I’d have to forward port the patches which will take time. So I’ll go for Xen instead which is very nice. Only catch with Xen is that since it’s a virtualisation product it needs more memory (wheras SELinux’s primary impact is a small loss of speed of the order of 5%).
Added an article to the HantsLUG Wiki as a result.’
Posted: July 25th, 2005 under Linux, Linux Rants.
Comments: none
Write a comment