[240] in Security FYI
[Security-fyi] recent breakins to Solaris and Linux machines
daemon@ATHENA.MIT.EDU (Linda A. LeBlanc)
Fri Apr 9 17:05:58 2004
Mime-Version: 1.0
Message-Id: <p06020403bc9cbe1be227@[18.152.5.63]>
Date: Fri, 9 Apr 2004 16:55:25 -0400
To: security-fyi@mit.edu
From: "Linda A. LeBlanc" <leblancl@mit.edu>
Content-Type: text/plain; charset="us-ascii" ; format="flowed"
Errors-To: security-fyi-bounces@mit.edu
To: Security-FYI
Date: 9 April 2004
There have been many recent breakins to university Solaris
and Linux systems, including ones for which the administrator
puts a lot of effort into security. MiT has recently seen an increase
in succesful attacks of this nature.
Stanford is one affected university, and they've composed
a detailed web page, which is mostly applicable to MIT also.
Anyone at MIT that owns a Linux or Solaris system should check
for the signs of compromise outlined on this Stanford web page.
This applies to all Linux and Solaris systems regardless of
whether they are Athena systems, or not
If you find something that appears to match a sign of compromise,
and need help with confirming it, or if you have further questions
about the situation, please contact security@mit.edu.
(Please do not contact the people at Stanford for help.)
http://securecomputing.stanford.edu/alerts/multiple-unix-6apr2004.html
Thank you for maintaining a safe computing environment at MIT.
--
Linda LeBlanc
I/T Security security@mit.edu
_______________________________________________
Security-fyi mailing list
Security-fyi@mit.edu
http://mailman.mit.edu/mailman/listinfo/security-fyi
