Full Disclosure: Re: Trojan found on Linux server

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: Trojan found on Linux server

From: Niek <niek () asbak coding-slaves com>
Date: Tue, 03 Jan 2006 00:09:48 +0100

On 1/2/2006 11:26 PM +0200, GroundZero Security wrote:

if I grep my logs for wget, I see tons of attempts.


you should use mod_security then.


I said 'attempts' :)

It blocks off all those script kidz and worms.
sure a clever person is able to circumvent that too, but
most of such scans are made by kids and worms so
just configure mod_security for apache :-)


Thanks for the tip though.

Regards,
Niek
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Trojan found on Linux server Gaddis, Jeremy L. (Jan 02)
- Re: Trojan found on Linux server Niek (Jan 02)
  - Re: Trojan found on Linux server Gaddis, Jeremy L. (Jan 02)
    - Re: Trojan found on Linux server Morning Wood (Jan 02)
  - Re: Trojan found on Linux server GroundZero Security (Jan 02)
    - Re: Trojan found on Linux server Niek (Jan 02)
- Re: Trojan found on Linux server Bulgaria Online - Assen Totin (Jan 04)