[40834] in North American Network Operators' Group
should i publish a list of cracked machines?
daemon@ATHENA.MIT.EDU (Jim Mercer)
Thu Aug 23 11:52:21 2001
Date: Thu, 23 Aug 2001 11:53:38 -0400
From: Jim Mercer <jim@reptiles.org>
To: nanog@merit.edu
Message-ID: <20010823115338.B10630@reptiles.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Errors-To: owner-nanog-outgoing@merit.edu
i found one of my boxes was cracked (probably due to the BSD telnetd overflow).
in any case, i found a file in the cracker's directory containing what i think
is a list of other servers which might be hacked.
i think the list also includes the passwords for using the trojan.
on my server, i found a trojan daemon, allowing ssh on an 14000 series port.
i was gonna just post the list of hosts here, but then, maybe not.
what is the appropriate feeling?
--
[ Jim Mercer jim@reptiles.org +1 416 410-5633 ]
[ Now with more and longer words for your reading enjoyment. ]
