Report. Worst Case Senario Confirmed

Slide Image
Previous slide Next slide Back to the index View text version

Notes:

This was the worst case seario come to life.

Out of nearly 300 accounts on this system, crack had busted over 70 passwords in less than 24 hours. The hacker had had weeks to work on it.

Password file probably retrieved by innd control message hack.

They had used easily hackable shells. - /bin/false

They had an exploitable suid program - /bin/mount

The hacker had achieved root status, installed root kits and backdoors. After cleaning up behind himself, he had remained on they system, undetected for an extended period of time.

A complete reinstall was recommended for recovery.