[prev in list] [next in list] [prev in thread] [next in thread] 

List:       debian-user
Subject:    hacked, then intrusion detection system
From:       <mgriffa () fibertel ! com ! ar>
Date:       2001-02-03 21:42:27
[Download RAW message or body]

Hi.
	I just realized that someone entered my debian box with
cablemodem. I couldn't find anything in the logs, but the pump package was
deleted.
	I replaced inetd for xinetd. took off services I didnt't use (It
was left all default, as I installed in a rush), and now I'd like a good
intrusion detection system.
	I'd like to hear about any advices about not security (too wide)
but tools to run in cron and which may be usefull for this kind of
situations.
Thanks!


-- 
To UNSUBSCRIBE, email to debian-user-request@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

[prev in list] [next in list] [prev in thread] [next in thread]